BIT-LIBPHP-2024-11236 Integer overflow in the firebird and dblib quoters causing OOB writes

In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, 8.3. before 8.3.14, uncontrolled long string inputs to ldapescape function on 32-bit systems can cause an integer overflow, resulting in an out-of-bounds write...

CVE-2024-11236 Integer overflow in the firebird and dblib quoters causing OOB writes

In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, 8.3. before 8.3.14, uncontrolled long string inputs to ldapescape function on 32-bit systems can cause an integer overflow, resulting in an out-of-bounds write...

CVE-2024-11236 Integer overflow in the firebird and dblib quoters causing OOB writes

In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, 8.3. before 8.3.14, uncontrolled long string inputs to ldapescape function on 32-bit systems can cause an integer overflow, resulting in an out-of-bounds write...

CVE-2024-11236

CVE-2024-11236 affects PHP versions with ldap_escape() on 32-bit systems where uncontrolled long inputs can overflow an integer, causing an out-of-bounds write. Affected are PHP 8.1.x before 8.1.31, 8.2.x before 8.2.26, and 8.3.x before 8.3.14. The issue is described in multiple sources, includin...

The vulnerability of the dblib and firebird PHP interpreter components allows attackers to execute arbitrary code.

The vulnerability of the dblib and firebird PHP interpreter components is related to integer overflow. Exploiting this vulnerability allows an attacker to execute arbitrary code by sending specially crafted data as input to the web application...