Php

Php

725 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 19.83%
  • Veröffentlicht 10.03.2007 22:19:00
  • Zuletzt bearbeitet 16.06.2026 22:37:30

Stack-based buffer overflow in the zip:// URL wrapper in PECL ZIP 1.8.3 and earlier, as bundled with PHP 5.2.0 and 5.2.1, allows remote attackers to execute arbitrary code via a long zip:// URL, as demonstrated by actively triggering URL access from ...

Exploit
  • EPSS 0.74%
  • Veröffentlicht 10.03.2007 22:19:00
  • Zuletzt bearbeitet 16.06.2026 22:37:30

Buffer overflow in the crack extension (CrackLib), as bundled with PHP 4.4.6 and other versions before 5.0.0, might allow local users to gain privileges via a long argument to the crack_opendict function.

Exploit
  • EPSS 7.42%
  • Veröffentlicht 10.03.2007 22:19:00
  • Zuletzt bearbeitet 16.06.2026 22:37:31

Buffer overflow in PHP 4.4.6 and earlier, and unspecified PHP 5 versions, allows local and possibly remote attackers to execute arbitrary code via long server name arguments to the (1) mssql_connect and (2) mssql_pconnect functions.

Exploit
  • EPSS 8.16%
  • Veröffentlicht 10.03.2007 00:19:00
  • Zuletzt bearbeitet 16.06.2026 22:37:27

Integer overflow in the substr_compare function in PHP 5.2.1 and earlier allows context-dependent attackers to read sensitive memory via a large value in the length argument, a different vulnerability than CVE-2006-1991.

Exploit
  • EPSS 10.03%
  • Veröffentlicht 10.03.2007 00:19:00
  • Zuletzt bearbeitet 16.06.2026 22:37:27

The shmop functions in PHP before 4.4.5, and before 5.2.1 in the 5.x series, do not verify that their arguments correspond to a shmop resource, which allows context-dependent attackers to read and write arbitrary memory locations via arguments associ...

  • EPSS 0.99%
  • Veröffentlicht 10.03.2007 00:19:00
  • Zuletzt bearbeitet 16.06.2026 22:37:28

The ovrimos_longreadlen function in the Ovrimos extension for PHP before 4.4.5 allows context-dependent attackers to write to arbitrary memory locations via the result_id and length arguments.

  • EPSS 1.63%
  • Veröffentlicht 10.03.2007 00:19:00
  • Zuletzt bearbeitet 16.06.2026 22:37:28

The ovrimos_close function in the Ovrimos extension for PHP before 4.4.5 can trigger efree of an arbitrary address, which might allow context-dependent attackers to execute arbitrary code.

Exploit
  • EPSS 9.08%
  • Veröffentlicht 10.03.2007 00:19:00
  • Zuletzt bearbeitet 16.06.2026 22:37:28

The php_binary serialization handler in the session extension in PHP before 4.4.5, and 5.x before 5.2.1, allows context-dependent attackers to obtain sensitive information (memory contents) via a serialized variable entry with a large length value, w...

Exploit
  • EPSS 9.07%
  • Veröffentlicht 10.03.2007 00:19:00
  • Zuletzt bearbeitet 16.06.2026 22:37:28

The wddx_deserialize function in wddx.c 1.119.2.10.2.12 and 1.119.2.10.2.13 in PHP 5, as modified in CVS on 20070224 and fixed on 20070304, calls strlcpy where strlcat was intended and uses improper arguments, which allows context-dependent attackers...

Exploit
  • EPSS 15.2%
  • Veröffentlicht 10.03.2007 00:19:00
  • Zuletzt bearbeitet 16.06.2026 22:37:28

Integer overflow in the 16 bit variable reference counter in PHP 4 allows context-dependent attackers to execute arbitrary code by overflowing this counter, which causes the same variable to be destroyed twice, a related issue to CVE-2007-1286.