Lucene search
K

5 matches found

BDU FSTEC
BDU FSTEC
added 2022/04/21 12:0 a.m.9 views

The vulnerability of the simplestring_addn function in the PHP programming language allows a hacker to execute arbitrary code.

The vulnerability of the simplestringaddn function in the PHP programming language arises due to buffer overflow. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.3AI score0.06271EPSS
Exploits1References15Affected Software3
RedHat Linux
RedHat Linux
added 2016/11/15 11:40 a.m.7 views

php: Heap buffer overflow vulnerability in simplestring_addn in simplestring.c

Integer signedness error in the simplestringaddn function in simplestring.c in xmlrpc-epi through 0.54.2, as used in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9, allows remote attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other...

9.8CVSS7.5AI score0.06271EPSS
Exploits1References4
OSV
OSV
added 2016/08/10 4:58 p.m.3 views

USN-3059-1 xmlrpc-epi vulnerability

It was discovered that xmlrpc-epi incorrectly handled lengths in the simplestringaddn function. A remote attacker could use this issue to cause applications using xmlrpc-epi such as PHP to crash, resulting in a denial of service, or possibly execute arbitrary code...

9.8CVSS7.4AI score0.06271EPSS
Exploits1References2
CNVD
CNVD
added 2016/07/26 12:0 a.m.1 views

PHP simplestring_addn function integer signature vulnerability

PHP is a widely used general-purpose scripting language that is particularly well suited for web development and can be embedded in HTML. An integer signature vulnerability exists in the xmlrpc-epi/simplestring.c/simplestringaddn function in PHP versions prior to 5.5.38, 5.6.x prior to 5.6.24, an...

9.8CVSS8.5AI score0.06271EPSS
Exploits1References1
OSV
OSV
added 2016/07/25 2:59 p.m.2 views

DEBIAN-CVE-2016-6296

Integer signedness error in the simplestringaddn function in simplestring.c in xmlrpc-epi through 0.54.2, as used in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9, allows remote attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other...

9.8CVSS9AI score0.06271EPSS
Exploits1References1
Rows per page
Query Builder