Lucene search
K

1318 matches found

securityvulns
securityvulns
added 2009/12/09 12:0 a.m.77 views

Advisory 03/2009: Piwik Cookie unserialize() Vulnerability

SektionEins GmbH www.sektioneins.de -= Security Advisory =- Advisory: Piwik Cookie Unserialize Vulnerability Release Date: 2009/12/09 Last Modified: 2009/12/09 Author: Stefan Esser stefan.esseratsektioneins.de Application: Piwik = 0.4.5 Severity: Piwik unserializes user input which allows an...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2009/12/09 12:0 a.m.48 views

Advisory 02/2009: PHPIDS Unserialize() Vulnerability

SektionEins GmbH www.sektioneins.de -= Security Advisory =- Advisory: PHPIDS Unserialize Vulnerability Release Date: 2009/12/09 Last Modified: 2009/12/09 Author: Stefan Esser stefan.esseratsektioneins.de Application: PHPIDS = 0.6.2 Severity: PHPIDS unserializes user input which allows an attacker...

8AI score
Exploits0
Metasploit
Metasploit
added 2008/10/19 9:3 p.m.37 views

PHP 4 unserialize() ZVAL Reference Counter Overflow (Cookie)

This module exploits an integer overflow vulnerability in the unserialize function of the PHP web server extension. This vulnerability was patched by Stefan in version 4.5.0 and applies all previous versions supporting this function. This particular module targets numerous web applications and is...

6.8CVSS7.6AI score0.40435EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2007/05/29 12:0 a.m.66 views

GLSA-200705-19 : PHP: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200705-19 PHP: Multiple vulnerabilities Several vulnerabilities were found in PHP, most of them during the Month Of PHP Bugs MOPB by Stefan Esser. The most severe of these vulnerabilities are integer overflows in wbmp.c from the G...

7.8CVSS8AI score0.40435EPSS
Exploits15References17
Tenable Nessus
Tenable Nessus
added 2007/05/11 12:0 a.m.39 views

FreeBSD : php -- multiple vulnerabilities (f5e52bf5-fc77-11db-8163-000e0c2e438a)

The PHP development team reports : Security Enhancements and Fixes in PHP 5.2.2 and PHP 4.4.7 : - Fixed CVE-2007-1001, GD wbmp used with invalid image size - Fixed asciiz byte truncation inside mail - Fixed a bug in mbparsestr that can be used to activate registerglobals - Fixed unallocated memor...

6.8CVSS5.8AI score0.08321EPSS
Exploits1References4
exploitpack
exploitpack
added 2007/05/04 12:0 a.m.18 views

RunCMS 1.5.2 - debug_show.php SQL Injection

RunCMS 1.5.2 - debugshow.php SQL Injection no authentication is performed to run showfiles and showqueries functions, look at this now in /class/debug/debug.php: ... function showqueries$executedqueries, $sorted=0 global $db; $executedqueries = unserializeurldecode$executedqueries; if $sorted == ...

0.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2007/04/30 12:0 a.m.66 views

Debian DSA-1282-1 : php4 - several vulnerabilities

Several remote vulnerabilities have been discovered in PHP, a server-side, HTML-embedded scripting language, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-1286 Stefan Esser discovered an overflow ...

7.8CVSS6.1AI score0.40435EPSS
Exploits12References13
OSV
OSV
added 2007/04/26 12:0 a.m.51 views

DSA-1282-1 php4

Bulletin has no description...

7.8CVSS7.7AI score0.40435EPSS
Exploits12
RedHat Linux
RedHat Linux
added 2007/04/20 11:36 a.m.4 views

security flaw

Integer overflow in PHP 4.4.4 and earlier allows remote context-dependent attackers to execute arbitrary code via a long string to the unserialize function, which triggers the overflow in the ZVAL reference counter...

6.8CVSS6.3AI score0.40435EPSS
Exploits7References4
RedHat Linux
RedHat Linux
added 2007/04/16 3:38 p.m.6 views

security flaw

Integer overflow in PHP 4.4.4 and earlier allows remote context-dependent attackers to execute arbitrary code via a long string to the unserialize function, which triggers the overflow in the ZVAL reference counter...

6.8CVSS6.3AI score0.40435EPSS
Exploits7References4
RedHat Linux
RedHat Linux
added 2007/04/16 3:27 p.m.67 views

Important: Red Hat Security Advisory: php security update

Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having important security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...

7.8CVSS7.3AI score0.40435EPSS
Exploits10References3
RedHat Linux
RedHat Linux
added 2007/04/16 3:27 p.m.5 views

security flaw

Integer overflow in PHP 4.4.4 and earlier allows remote context-dependent attackers to execute arbitrary code via a long string to the unserialize function, which triggers the overflow in the ZVAL reference counter...

6.8CVSS6.3AI score0.40435EPSS
Exploits7References4
securityvulns
securityvulns
added 2007/03/25 12:0 a.m.50 views

PHP unserialize() function information leak

Uninitiailized memory fragment is returned on "S:" string...

7.8CVSS2.5AI score0.0721EPSS
Exploits1References1Affected Software1
securityvulns
securityvulns
added 2007/03/25 12:0 a.m.42 views

MOPB-29-2007:PHP 5.2.1 unserialize() Information Leak Vulnerability

Summary The new S: data type added to PHP 5.2.1's serialisation format is completely broken. The new feature it is supposed to add, the handling of escaped strings does not work at all and leads to disclosure of heap memory content. Affected versions Affected is PHP 5.2.1 Detailed information Wit...

7.2AI score
Exploits0
seebug.org
seebug.org
added 2007/03/24 12:0 a.m.21 views

PHP 5.2.1 unserialize() Local Information Leak Exploit

No description provided by source. ?php //////////////////////////////////////////////////////////////////////// // // // | || | | | | | | | || || \ // // | |/ || '|/ |/ -| ' \ / -/ |||| /| || / //...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2007/03/24 12:0 a.m.23 views

MOPB-unserialize.txt

1,strrepeat'"', 200."2"=1; $heapdump = unserialize$str; echo "Heapdump\n---------\n\n"; $len = strlen$heapdump; for $b=0; $b 127 || $c...

Exploits0
0day.today
0day.today
added 2007/03/23 12:0 a.m.17 views

PHP 5.2.1 unserialize() Local Information Leak Exploit

Exploit for multiple platform in category local exploits ====================================================== PHP 5.2.1 unserialize Local Information Leak Exploit ====================================================== 1,strrepeat'"', 200."2"=1; $heapdump = unserialize$str; echo...

6.9AI score
Exploits0
Exploit DB
Exploit DB
added 2007/03/23 12:0 a.m.36 views

PHP 5.2.1 - 'Unserialize()' Local Information Leak

1,strrepeat'"', 200."2"=1; $heapdump = unserialize$str; echo "Heapdump\n---------\n\n"; $len = strlen$heapdump; for $b=0; $b$len; $b+=16 printf"%08x: ", $b; for $i=0; $i16; $i++ if $b+$i$len printf "%02x ", ord$heapdump$b+$i; else printf ".. ";...

7AI score
Exploits0
exploitpack
exploitpack
added 2007/03/23 12:0 a.m.10 views

PHP 5.2.1 - Unserialize() Local Information Leak

PHP 5.2.1 - Unserialize Local Information Leak 1,strrepeat'"', 200."2"=1; $heapdump = unserialize$str; echo "Heapdump\n---------\n\n"; $len = strlen$heapdump; for $b=0; $b$len; $b+=16 printf"%08x: ", $b; for $i=0; $i16; $i++ if $b+$i$len printf "%02x ", ord$heapdump$b+$i; else printf "...

0.6AI score
Exploits0
NVD
NVD
added 2007/03/06 8:19 p.m.23 views

CVE-2007-1286

Integer overflow in PHP 4.4.4 and earlier allows remote context-dependent attackers to execute arbitrary code via a long string to the unserialize function, which triggers the overflow in the ZVAL reference counter...

6.8CVSS7.9AI score0.40435EPSS
Exploits7References32
Rows per page
Query Builder