php: 1-byte array overrun in common path resolve code

A vulnerability was found in PHP. This security issue occurs because the core path resolution function allocates a buffer one byte small. Resolving paths with lengths close to the system MAXPATHLEN setting may lead to the byte after the allocated buffer being overwritten with a NULL value, which...

windows98.bof.txt

Date: Mon, 15 Feb 1999 17:59:13 -0500 From: Ervin Fried To: [email protected] Subject: Re: Win98 Buffer Overflow File attached my .02$: Explorer has bugs in handling files with pathname longer than or equal to the documented max and files with components that exceed other maximums. CreateFile...