Lucene search
K

1318 matches found

Tenable Nessus
Tenable Nessus
added 2006/10/10 12:0 a.m.39 views

FreeBSD : php -- _ecalloc Integer Overflow Vulnerability (e329550b-54f7-11db-a5ae-00508d6a62df)

Stefan Esser reports : The PHP 5 branch of the PHP source code lacks the protection against possible integer overflows inside ecalloc that is present in the PHP 4 branch and also for several years part of our Hardening-Patch and our new Suhosin-Patch. It was discovered that such an integer overfl...

10CVSS5.8AI score0.15011EPSS
Exploits0References3
Cvelist
Cvelist
added 2006/10/09 6:0 p.m.26 views

CVE-2006-4812

Integer overflow in PHP 5 up to 5.1.6 and 4 before 4.3.0 allows remote attackers to execute arbitrary code via an argument to the unserialize PHP function with a large value for the number of array elements, which triggers the overflow in the Zend Engine ecalloc function Zend/zendalloc.c...

7.9AI score0.15011EPSS
Exploits0References26
securityvulns
securityvulns
added 2006/10/09 12:0 a.m.66 views

PHP integer overflow

unserialize function integer overflow...

10CVSS4.3AI score0.15011EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2006/10/09 12:0 a.m.67 views

Advisory 09/2006: PHP unserialize() Array Creation Integer Overflow

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hardened-PHP Project www.hardened-php.net -= Security Advisory =- Advisory: PHP unserialize Array Creation Integer Overflow Release Date: 2006/10/09 Last Modified: 2006/10/09 Author: Stefan Esser [email protected] Application: PHP 5 = 5.1.6, PHP...

10CVSS1.1AI score0.15011EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2006/10/05 11:38 a.m.4 views

security flaw

Integer overflow in PHP 5 up to 5.1.6 and 4 before 4.3.0 allows remote attackers to execute arbitrary code via an argument to the unserialize PHP function with a large value for the number of array elements, which triggers the overflow in the Zend Engine ecalloc function Zend/zendalloc.c...

10CVSS6.3AI score0.15011EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2006/10/05 11:30 a.m.2 views

security flaw

Integer overflow in PHP 5 up to 5.1.6 and 4 before 4.3.0 allows remote attackers to execute arbitrary code via an argument to the unserialize PHP function with a large value for the number of array elements, which triggers the overflow in the Zend Engine ecalloc function Zend/zendalloc.c...

10CVSS6.3AI score0.15011EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2006/09/30 12:0 a.m.39 views

php -- _ecalloc Integer Overflow Vulnerability

Stefan Esser reports: The PHP 5 branch of the PHP source code lacks the protection against possible integer overflows inside ecalloc that is present in the PHP 4 branch and also for several years part of our Hardening-Patch and our new Suhosin-Patch. It was discovered that such an integer overflo...

10CVSS7.3AI score0.15011EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2005/04/15 12:0 a.m.47 views

SUSE-SA:2005:023: php4, php5

The remote host is missing the patch for the advisory SUSE-SA:2005:023 php4, php5. This update fixes the following security issues in the PHP scripting language: - A bug in getimagesize EXIF handling which could lead to a denial of service attack. This is tracked by the Mitre CVE IDs CVE-2005-052...

5CVSS5.6AI score0.03453EPSS
Exploits1References2
Slackware Linux
Slackware Linux
added 2005/04/05 2:48 p.m.14 views

PHP

New PHP packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, and -current to fix security issues. More details about the issues may be found in the PHP ChangeLogs on the PHP web site: http://php.net Here are the details from the Slackware 10.1 ChangeLog:...

7.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2005/02/15 9:23 a.m.7 views

security flaw

The deserialization code in PHP before 4.3.10 and PHP 5.x up to 5.0.2 allows remote attackers to cause a denial of service and execute arbitrary code via untrusted data to the unserialize function that may trigger "information disclosure, double-free and negative reference index array underflow"...

10CVSS7.3AI score0.07996EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2005/01/19 6:46 p.m.84 views

Important: Red Hat Security Advisory: php security update

Updated php packages that fix various security issues are now available for Red Hat Enterprise Linux 2.1. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. A double-free bug was found in the deserialization code of PHP. PHP applications use the unserialize...

10CVSS7AI score0.1616EPSS
Exploits0References3
NVD
NVD
added 2005/01/10 5:0 a.m.32 views

CVE-2004-1019

The deserialization code in PHP before 4.3.10 and PHP 5.x up to 5.0.2 allows remote attackers to cause a denial of service and execute arbitrary code via untrusted data to the unserialize function that may trigger "information disclosure, double-free and negative reference index array underflow"...

10CVSS9.7AI score0.07996EPSS
Exploits0References16
Cvelist
Cvelist
added 2004/12/22 5:0 a.m.44 views

CVE-2004-1019

The deserialization code in PHP before 4.3.10 and PHP 5.x up to 5.0.2 allows remote attackers to cause a denial of service and execute arbitrary code via untrusted data to the unserialize function that may trigger "information disclosure, double-free and negative reference index array underflow"...

9.7AI score0.07996EPSS
Exploits0References16
Gentoo Linux
Gentoo Linux
added 2004/12/19 12:0 a.m.77 views

PHP: Multiple vulnerabilities

Background PHP is a general-purpose scripting language widely used to develop web-based applications. It can run inside a web server using the modphp module or the CGI version of PHP, or can run stand-alone in a CLI. Description Stefan Esser and Marcus Boerger reported several different issues in...

10CVSS7.6AI score0.10042EPSS
Exploits1
securityvulns
securityvulns
added 2004/12/18 12:0 a.m.41 views

phphpbb2 + php version < 4.3.10 unserialize() memory dump sql password from config.php exploit

php bug in ext/standart/varunserializer.c in php 4.3.10 for dump php heap memory with phpbb2 ,who use unserialize for cookie , and found the config.phpsql password in the heap. you need http://overdose.tcpteam.org/serv.h and http://overdose.tcpteam.org/serv.cpp for compile / coded by overdose...

7AI score
Exploits0
seebug.org
seebug.org
added 2004/12/17 12:0 a.m.30 views

PHP <= 4.3.9 & phpBB 2.x with unserialize() Remote Exploit (compiled)

No description provided by source. // Compiled version: http://www.milw0rm.com/sploits/phpbbmemorydump.rar // Source serv.cpp is at the bottom of the page - str0ke // Notes from author: // compile with borland c++ freecommandlinetools : // bcc32 -c serv.cpp // bcc32 bbmemorydump.cpp serv.obj /...

7.1AI score
Exploits0
Friends Of PHP
Friends Of PHP
added 1970/01/01 12:0 a.m.13 views

Remote Code Execution via Chosen-Ciphertext Attack

https://github.com/titon/framework/blob/cbf44729173d3a83b91a2b0a217c6b3827512e44/src/Titon/Crypto/OpenSslCipher.hhL30-L39 You aren't authenticating your ciphertexts, and then you're passing the decrypted result to unserialize. See also:...

7.1AI score
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
added 1970/01/01 12:0 a.m.24 views

CVE-2019-10912: Prevent destructors with side-effects from being unserialized

More info at https://symfony.com/cve-2019-10912...

7.1CVSS7.2AI score0.02302EPSS
Exploits0Affected Software1
Rows per page
Query Builder