15 matches found
EUVD-2010-3064
Malware in sbrugna...
EUVD-2010-3066
Malware in sbrugna...
EUVD-2010-3065
Malware in sbrugna...
SUSE CVE-2010-3063
The phpmysqlndreaderrorfromline function in the Mysqlnd extension in PHP 5.3 through 5.3.2 does not properly calculate a buffer length, which allows context-dependent attackers to trigger a heap-based buffer overflow via crafted inputs that cause a negative length value to be used...
SUSE CVE-2010-3064
Stack-based buffer overflow in the phpmysqlndauthwrite function in the Mysqlnd extension in PHP 5.3 through 5.3.2 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a long 1 username or 2 database name argument to the a mysqlconnect or b...
php: multiple issues
CVE-2016-7411 arbitrary code execution A memory Corruption vulnerability was found in php's unserialize method. This happened during the deserialized-object Destruction. - CVE-2016-7412 arbitrary code execution Php's mysqlnd extension assumes the flags returned for a BIT field necessarily...
PHP 5.3.x<5.3.3 Mysqlnd扩展mysqlnd_wireprotocol.c信息泄露漏洞
No description provided by source...
CVE-2010-3063
The phpmysqlndreaderrorfromline function in the Mysqlnd extension in PHP 5.3 through 5.3.2 does not properly calculate a buffer length, which allows context-dependent attackers to trigger a heap-based buffer overflow via crafted inputs that cause a negative length value to be used...
CVE-2010-3062
mysqlndwireprotocol.c in the Mysqlnd extension in PHP 5.3 through 5.3.2 allows remote attackers to 1 read sensitive memory via a modified length value, which is not properly handled by the phpmysqlndokread function; or 2 trigger a heap-based buffer overflow via a modified length value, which is n...
CVE-2010-3062
mysqlndwireprotocol.c in the Mysqlnd extension in PHP 5.3 through 5.3.2 allows remote attackers to 1 read sensitive memory via a modified length value, which is not properly handled by the phpmysqlndokread function; or 2 trigger a heap-based buffer overflow via a modified length value, which is n...
Heap overflow
mysqlndwireprotocol.c in the Mysqlnd extension in PHP 5.3 through 5.3.2 allows remote attackers to 1 read sensitive memory via a modified length value, which is not properly handled by the phpmysqlndokread function; or 2 trigger a heap-based buffer overflow via a modified length value, which is n...
CVE-2010-3063
The phpmysqlndreaderrorfromline function in the Mysqlnd extension in PHP 5.3 through 5.3.2 does not properly calculate a buffer length, which allows context-dependent attackers to trigger a heap-based buffer overflow via crafted inputs that cause a negative length value to be used...
CVE-2010-3063
The phpmysqlndreaderrorfromline function in the Mysqlnd extension in PHP 5.3 through 5.3.2 does not properly calculate a buffer length, which allows context-dependent attackers to trigger a heap-based buffer overflow via crafted inputs that cause a negative length value to be used...
CVE-2010-3062
mysqlndwireprotocol.c in the Mysqlnd extension in PHP 5.3 through 5.3.2 allows remote attackers to 1 read sensitive memory via a modified length value, which is not properly handled by the phpmysqlndokread function; or 2 trigger a heap-based buffer overflow via a modified length value, which is n...
PHP Mysqlnd Extension Information Disclosure and Multiple Buffer Overflow Vulnerabilities
The PHP Mysqlnd extension is prone to an information disclosure vulnerability and multiple buffer-overflow vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...