Lucene search
K

6 matches found

RedHat Linux
RedHat Linux
added 2015/06/25 8:31 a.m.4 views

php: integer overflow leading to heap overflow when reading FTP file listing

An integer overflow flaw leading to a heap-based buffer overflow was found in the way PHP's FTP extension parsed file listing FTP server responses. A malicious FTP server could use this flaw to cause a PHP application to crash or, possibly, execute arbitrary code...

7.5CVSS7.6AI score0.20837EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2015/06/23 8:11 a.m.3 views

php: integer overflow in ftp_genlist() resulting in heap overflow (improved fix for CVE-2015-4022)

Integer overflow in the ftpgenlist function in ext/ftp/ftp.c in PHP before 5.4.42, 5.5.x before 5.5.26, and 5.6.x before 5.6.10 allows remote FTP servers to execute arbitrary code via a long reply to a LIST command, leading to a heap-based buffer overflow. NOTE: this vulnerability exists because ...

9.8CVSS8AI score0.20837EPSS
Exploits2References4
OSV
OSV
added 2015/06/09 12:0 a.m.3 views

UBUNTU-CVE-2015-4022

Integer overflow in the ftpgenlist function in ext/ftp/ftp.c in PHP before 5.4.41, 5.5.x before 5.5.25, and 5.6.x before 5.6.9 allows remote FTP servers to execute arbitrary code via a long reply to a LIST command, leading to a heap-based buffer overflow...

7.5CVSS8AI score0.20837EPSS
Exploits1References4
Hacker One
Hacker One
added 2015/04/28 12:0 a.m.105 views

Internet Bug Bounty: Integer overflow in ftp_genlist() resulting in heap overflow

https://bugs.php.net/bug.php?id=69545 Description: ------------ The ftpgenlist function of the ftp extension is prone to an integer overflow, which may result in remote code execution. ext/ftp/ftp.c:ftpgenlist... 1826 size = 0; 1827 lines = 0; 1828 lastch = 0; 1829 while rcvd = myrecvftp, data-fd...

7.5CVSS8.9AI score0.20837EPSS
Exploits1
OpenVAS
OpenVAS
added 2009/08/17 12:0 a.m.20 views

Mandrake Security Advisory MDVSA-2009:167 (php)

The remote host is missing an update to php announced via advisory MDVSA-2009:167. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-on...

4.3CVSS6.3AI score0.04378EPSS
Exploits1References2
securityvulns
securityvulns
added 2007/03/24 12:0 a.m.49 views

CRLF injection in PHP ftp function

We found that there was one crlf injection in php ftp ftuntion.As same as http,you can inject a 'rn other command' in the paramer of a ftp function like ftpmkdir,and then php would send the rn to your connected ftp server.The server considerd there is a new command,and the other command would be...

0.3AI score
Exploits0
Rows per page
Query Builder