2 matches found
Internet Bug Bounty: openssl_seal() uninitialized memory usage
opensslseal is prone to use uninitialized memory that can be turned into a code execution. Details about bug: https://bugs.php.net/bug.php?id=71475 already fixed Details about exploitation: http://akat1.pl/?id=1 released after bug was fixed...
A Tale of openssl_seal(), PHP, and Apache2handle
Hey folks, The opensslseal 4 is prone to use uninitialized memory that can be turned into a code execution. This document describes technical details of our journey to hijack apache2 requests. What the heck is opensslseal? ... int opensslseal string $data , string &$sealeddata , array &$envkeys ,...