CVE-2007-3806
CVE-2007-3806
The glob function in PHP 5.2.3 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an invalid value of the flags parameter, probably related to memory corruption or an invalid read on win32 platforms, and possibly related to lack of initialization for a glob structure.
Productos afectados
n/a · n/aPoCs públicas encontradas — 2
exploitdbwww.exploit-db.com/exploits/4181no verificadocve_referencewww.exploit-db.com/exploits/4181no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://cvs.php.net/viewvc.cgi/php-src/ext/standard/dir.c?r1=1.166&r2=1.167http://cvs.php.net/viewvc.cgi/php-src/ext/standard/dir.c?view=loghttp://osvdb.org/36085http://secunia.com/advisories/26085http://secunia.com/advisories/26642http://secunia.com/advisories/27102http://secunia.com/advisories/30158http://secunia.com/advisories/30288https://exchange.xforce.ibmcloud.com/vulnerabilities/35437http://www.debian.org/security/2008/dsa-1572http://www.debian.org/security/2008/dsa-1578http://www.exploit-db.com/exploits/4181