EUVD-2007-1877

Malware in sbrugna...

SUSE CVE-2007-1883

PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allows context-dependent attackers to read arbitrary memory locations via an interruption that triggers a user space error handler that changes a parameter to an arbitrary pointer, as demonstrated via the iptcembed function, which calls certain...

PHP 5.6.x < 5.6.18 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.18. It is, therefore, affected by multiple vulnerabilities : - The Perl-Compatible Regular Expressions PCRE library is affected by multiple vulnerabilities related to the handling of regular...

PHP 7.0.x < 7.0.3 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 7.0.x prior to 7.0.3. It is, therefore, affected by multiple vulnerabilities : - The Perl-Compatible Regular Expressions PCRE library is affected by multiple vulnerabilities related to the handling of regular...

Internet Bug Bounty: Trivial age-old heap overflow in 32-bit PHP

Given one is able to execute a PHP file there exists a trivial heap overflow in the ext/standard/iptc.c module, a module which exports the iptcembed and iptcparse functions. It should be noted that the implementation of these functions is - in some countries - allowed to drink beer and get drivin...

CVE-2007-1883

PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allows context-dependent attackers to read arbitrary memory locations via an interruption that triggers a user space error handler that changes a parameter to an arbitrary pointer, as demonstrated via the iptcembed function, which calls certain...

CVE-2007-1883

PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allows context-dependent attackers to read arbitrary memory locations via an interruption that triggers a user space error handler that changes a parameter to an arbitrary pointer, as demonstrated via the iptcembed function, which calls certain...

CVE-2007-1883

PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allows context-dependent attackers to read arbitrary memory locations via an interruption that triggers a user space error handler that changes a parameter to an arbitrary pointer, as demonstrated via the iptcembed function, which calls certain...

CVE-2007-1883

The CVE-2007-1883 entry describes a PHP vulnerability across multiple branches (PHP 4.0.0–4.4.6 and 5.0.0–5.2.1) where an interruption triggering a userspace error handler can change a parameter to an arbitrary pointer, allowing context-dependent attackers to read arbitrary memory via the iptcemb...

MOPB-37-2007:PHP iptcembed&#40;&#41; Interruption Information Leak Vulnerability

Summary Whenever functions accept references which all do in the default configuration it is possible for a malicious user space error handler that interrupts the function to modify the function parameters after the function has already started executing. This might for example trick the function...

PHP iptcembed&#40;&#41; function information leak

Uninitialized memory region is returned on invalid function termination...

PHP 5.2.1 - Multiple functions &#039;Reference&#039; Information Disclosures

source: https://www.securityfocus.com/bid/23202/info PHP is prone to an information-disclosure vulnerability due to a design error. The vulnerability resides in various functions that accept parameters as references. Successful exploits will allow attackers to obtain sensitive information...