@(#)Mordred Labs advisory - PHP for Win32: buffer overflow in openlog() function

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 //@ Mordred Security Labs advisory Release date: March 27, 2003 Name: PHP for Windows - buffer overflow in openlog function Versions affected: all versions for Windows platforms Risk: average Author: Sir Mordred [email protected] I. Description: PHP ...

CVE-2002-0249

PHP for Windows, when installed on Apache 2.0.28 beta as a standalone CGI module, allows remote attackers to obtain the physical path of the php.exe via a request with malformed arguments such as /123, which leaks the pathname in the error message...

CVE-2002-0249

PHP for Windows, when installed on Apache 2.0.28 beta as a standalone CGI module, allows remote attackers to obtain the physical path of the php.exe via a request with malformed arguments such as /123, which leaks the pathname in the error message...

php.windows.txt

Title 17/2/2002 PHP for Windows Arbitrary Files Execution GIF, MP3 Summary Through PHP.EXE, an attacker can cause PHP to interpret any file as a PHP file, even if its extensions are not PHP. This would enable the remote attacker to execute arbitrary commands, leading to a system compromise. Detai...