SUSE CVE-2010-3064

Stack-based buffer overflow in the phpmysqlndauthwrite function in the Mysqlnd extension in PHP 5.3 through 5.3.2 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a long 1 username or 2 database name argument to the a mysqlconnect or b...

CVE-2010-3064

Stack-based buffer overflow in the phpmysqlndauthwrite function in the Mysqlnd extension in PHP 5.3 through 5.3.2 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a long 1 username or 2 database name argument to the a mysqlconnect or b...

CVE-2010-3064

CVE-2010-3064: Stack-based buffer overflow in php_mysqlnd_auth_write (Mysqlnd extension) affects PHP 5.3–5.3.2. Context-dependent attackers could crash the process or possibly execute arbitrary code via a long username or database name passed to mysql_connect or mysqli_connect. Remediation: upgra...

CVE-2010-3064

Stack-based buffer overflow in the phpmysqlndauthwrite function in the Mysqlnd extension in PHP 5.3 through 5.3.2 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a long 1 username or 2 database name argument to the a mysqlconnect or b...

mysql_error() XSS Vulnerability

不正确使用mysqlerror导致的Vul。当然前提是$db可以覆盖，那么就很鸡肋了，或者就不能叫Vul了，O∩∩OJust For Fun mysqlerror http://hi.baidu.com/menzhi007/blog/item/7583dc0390316d7d3912bbbf.html ?php $db='menzhi007'; extract$GET; $link = mysqlconnect"localhost", "root", ""; mysqlselectdb$db, $link; echo mysqlerror$link; ?...

PHP MySQL_Connect远程溢出漏洞

BUGTRAQ ID: 16145 PHP是广泛使用的通用目的脚本语言，特别适合于Web开发，可嵌入到HTML中。 PHP中存在远程溢出漏洞，攻击者可以利用这个漏洞在受影响的Web Server上执行任意代码。失败的攻击尝试也可能导致Web Server崩溃。 请注意通常情况下远程攻击者是无法修改访问mysqlconnect函数的参数的，因此可限制攻击的可能性。 PHP PHP 4.4.1 PHP PHP 4.4.0 PHP PHP 4.3.1 PHP --- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.php.n...

CVE-2006-0097

Stack-based buffer overflow in the createnamedpipe function in libmysql.c in PHP 4.3.10 and 4.4.x before 4.4.3 for Windows allows attackers to execute arbitrary code via a long 1 arghost or 2 argunixsocket argument, as demonstrated by a long named pipe variable in the host argument to the...

PHP 4.4.0 - mysql_connect function Local Buffer Overflow

PHP 4.4.0 - mysqlconnect function Local Buffer Overflow ?php / This exploit was designed to work with PHP versions 4.3.10 and 4.4.0 under Windows XP SP 1. If another operating system is used, the replacement EIP must be changed. The replacement EIP is written 261 bytes into our string. For this...

Windows PHP buffer overflow

mysqlconnect buffer overflow...

PHP <= 4.4.0 (mysql_connect function) Local Buffer Overflow Exploit

Exploit for unknown platform in category local exploits =================================================================== PHP = 4.4.0 mysqlconnect function Local Buffer Overflow Exploit =================================================================== ?php / This exploit was designed to work...