CVE-2007-4586

Multiple buffer overflows in phpiisfunc.dll in the iisfunc extension for PHP 5.2.0 and earlier allow context-dependent attackers to execute arbitrary code, probably during Unicode conversion, as demonstrated by a long string in the first argument to the iisgetservicestate function, related to the...

Buffer overflow

Multiple buffer overflows in phpiisfunc.dll in the iisfunc extension for PHP 5.2.0 and earlier allow context-dependent attackers to execute arbitrary code, probably during Unicode conversion, as demonstrated by a long string in the first argument to the iisgetservicestate function, related to the...

CVE-2007-4586

CVE-2007-4586 describes multiple buffer overflows in the php_iisfunc.dll iisfunc extension used by PHP 5.2.0 and earlier. The overflow occurs during Unicode conversion and can be triggered by long strings passed to iis_getservicestate (and is related to the ServiceId argument in fnStartService, f...

PHP <= 5.2.0 (php_iisfunc.dll) Local Buffer Overflow PoC (win32)

No description provided by source. ?php // ================================================================================== // // phpiisfunc.dll PHP = 5.2.0 win32 Buffer Overflow PoC // // Discovery: boecke [email protected] // Risk: Local Buffer Overflow Medium - High Risk // Notes: Various...

PHP <= 5.2.0 (php_iisfunc.dll) Local Buffer Overflow PoC (win32)

Exploit for unknown platform in category dos / poc ================================================================ PHP // Risk: Local Buffer Overflow Medium - High Risk // Notes: Various other functions are exploitable, all of which convert the // string arguments to unicode. // // extern "C"...

php520-local.txt

// Risk: Local Buffer Overflow Medium - High Risk // Notes: Various other functions are exploitable, all of which convert the // string arguments to unicode. // // extern "C" IISFUNCAPI int fnStartServiceLPCTSTR ServiceId; // extern "C" IISFUNCAPI int fnGetServiceStateLPCTSTR ServiceId; // extern...