CVE-2007-2872
CVE-2007-2872
Multiple integer overflows in the chunk_split function in PHP 5 before 5.2.3 and PHP 4 before 4.4.8 allow remote attackers to cause a denial of service (crash) or execute arbitrary code via the (1) chunks, (2) srclen, and (3) chunklen arguments.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 1
exploitdbwww.exploit-db.com/exploits/30117não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01345501http://lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.htmlhttp://lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.htmlhttp://osvdb.org/36083http://rhn.redhat.com/errata/RHSA-2007-0889.htmlhttp://secunia.com/advisories/25456http://secunia.com/advisories/25535http://secunia.com/advisories/26048http://secunia.com/advisories/26231http://secunia.com/advisories/26838http://secunia.com/advisories/26871