CVE-2007-1411
CVE-2007-1411
Buffer overflow in PHP 4.4.6 and earlier, and unspecified PHP 5 versions, allows local and possibly remote attackers to execute arbitrary code via long server name arguments to the (1) mssql_connect and (2) mssql_pconnect functions.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/3417unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://retrogod.altervista.org/php_446_mssql_connect_bof.htmlhttp://secunia.com/advisories/24353http://securityreason.com/securityalert/2407https://exchange.xforce.ibmcloud.com/vulnerabilities/32885http://www.securityfocus.com/archive/1/462010/100/0/threadedhttp://www.securityfocus.com/bid/22832http://www.vupen.com/english/advisories/2007/0867