Lucene search
K

73 matches found

UbuntuCve
UbuntuCve
added 2016/05/30 12:0 a.m.32 views

CVE-2016-5096

Integer overflow in the fread function in ext/standard/file.c in PHP before 5.5.36 and 5.6.x before 5.6.22 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a large integer in the second argument...

8.6CVSS7.2AI score0.04397EPSS
Exploits1References3
Hacker One
Hacker One
added 2016/05/26 3:11 p.m.26 views

Internet Bug Bounty: Integer underflow / arbitrary null write in fread/gzread

https://bugs.php.net/bug.php?id=72114 Integer underflow in the fread/gzread length parameter allows to write an arbitrary null byte on 64 bit platforms. This was identified with the help of ASAN and a custom fuzzer. gdb run gzread2.php Starting program: /home/operac/php/php-56/sapi/cli/php...

7AI score
Exploits0
FreeBSD
FreeBSD
added 2016/05/26 12:0 a.m.59 views

php -- multiple vulnerabilities

The PHP Group reports: Core: Fixed bug 72114 Integer underflow / arbitrary null write in fread/gzread. CVE-2016-5096 PHP 5.5/5.6 only Fixed bug 72135 Integer Overflow in phphtmlentities. CVE-2016-5094 PHP 5.5/5.6 only GD: Fixed bug 72227 imagescale out-of-bounds read. CVE-2013-7456 Intl: Fixed bu...

8.8CVSS7.6AI score0.05487EPSS
Exploits4References3
0day.today
0day.today
added 2016/04/26 12:0 a.m.142 views

libgd 2.1.1 - Signedness Heap Overflow

Exploit for linux platform in category remote exploits Overview ======== libgd 1 is an open-source image library. It is perhaps primarily used by the PHP project. It has been bundled with the default installation of PHP since version 4.3 2. A signedness vulnerability CVE-2016-3074 exist in libgd...

7.5CVSS7.7AI score0.36974EPSS
Exploits8
exploitpack
exploitpack
added 2016/04/26 12:0 a.m.56 views

libgd 2.1.1 - Signedness Heap Overflow

libgd 2.1.1 - Signedness Heap Overflow Overview ======== libgd 1 is an open-source image library. It is perhaps primarily used by the PHP project. It has been bundled with the default installation of PHP since version 4.3 2. A signedness vulnerability CVE-2016-3074 exist in libgd 2.1.1 which may...

7.5CVSS0.2AI score0.36974EPSS
Exploits8
Exploit DB
Exploit DB
added 2016/04/26 12:0 a.m.71 views

libgd 2.1.1 - Signedness Heap Overflow

Overview ======== libgd 1 is an open-source image library. It is perhaps primarily used by the PHP project. It has been bundled with the default installation of PHP since version 4.3 2. A signedness vulnerability CVE-2016-3074 exist in libgd 2.1.1 which may result in a heap overflow when processi...

9.8CVSS7.7AI score0.36974EPSS
Exploits8
Packet Storm
Packet Storm
added 2016/04/21 12:0 a.m.73 views

libgd 2.1.1 Signedness

Overview ======== libgd 1 is an open-source image library. It is perhaps primarily used by the PHP project. It has been bundled with the default installation of PHP since version 4.3 2. A signedness vulnerability CVE-2016-3074 exist in libgd 2.1.1 which may result in a heap overflow when processi...

7.5CVSS0.1AI score0.36974EPSS
Exploits8
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

VMCPlayer 1.0 - Denial of Service

No description provided by source. done by BraniX [email protected] www.hackers.org.pl found: 2011.03.22 published: 2011.03.22 tested on: Windows XP SP3 Home Edition App: VMCPlayer 1.0 App Url: http://files.videomobileconverter.com/vmcplayer.exe VMCPlayer.exe MD5:...

7.1AI score
Exploits0
0day.today
0day.today
added 2011/10/19 12:0 a.m.22 views

CMSmini 0.2.2 Local File Inclusion

Exploit for php platform in category web applications Exploit Title: CMSmini 0.2.2 Local File Inclusion Date: 2011.10.20 Author: I2Sec5-BSK Software Link: http://sourceforge.net/projects/cmsmini/ Version: CMSmini 0.2.2 Tested on: Windows XP --------------------------------------------------...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2011/03/23 12:0 a.m.20 views

VMCPlayer 1.0 Denial Of Service

done by BraniX www.hackers.org.pl found: 2011.03.22 published: 2011.03.22 tested on: Windows XP SP3 Home Edition App: VMCPlayer 1.0 App Url: http://files.videomobileconverter.com/vmcplayer.exe VMCPlayer.exe MD5: 8a98ffbb404731f8f5ffbf3eaf30a327 VMCPlayer can be DoS'ed in two or probably more ways...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2011/03/23 12:0 a.m.11 views

VMCPlayer 1.0 - Denial of Service

VMCPlayer 1.0 - Denial of Service done by BraniX www.hackers.org.pl found: 2011.03.22 published: 2011.03.22 tested on: Windows XP SP3 Home Edition App: VMCPlayer 1.0 App Url: http://files.videomobileconverter.com/vmcplayer.exe VMCPlayer.exe MD5: 8a98ffbb404731f8f5ffbf3eaf30a327 VMCPlayer can be...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.22 views

Debian Security Advisory DSA 146-1 (dietlibc)

The remote host is missing an update to dietlibc announced via advisory DSA 146-1. OpenVAS Vulnerability Test $Id: deb1461.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 146-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

10CVSS1AI score0.58133EPSS
Exploits3
seebug.org
seebug.org
added 2007/12/26 12:0 a.m.105 views

Tikiwiki CMS tiki-listmovies.php文件目录遍历漏洞

BUGTRAQ ID: 27008 TikiWiki是一款网站内容管理系统,基于PHP+ADOdb+Smarty等技术构建。 TikiWiki的实现上存在输入验证漏洞,远程攻击者可能利用此漏洞非授权访问到服务器上任意文件的部分内容。 TikiWiki的tiki-listmovies.php脚本允许用户获得任意文件的前1000个字节。该脚本将movie参数值设置为$movie,删除最后4字节并添加.xml扩展名,然后调用fopen$confFile,'r'打开文件并读取文件的前1000个字节,接着传送这1000字节用作MovieWidth和MovieHeight...

6.9AI score
Exploits0
Rows per page
Query Builder