Published: 10/01/2005 Updated: 08/12/2020

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Multiple integer handling errors in PHP prior to 4.3.10 allow malicious users to bypass safe mode restrictions, cause a denial of service, or execute arbitrary code via (1) a negative offset value to the shmop_write function, (2) an "integer overflow/underflow" in the pack function, or (3) an "integer overflow/underflow" in the unpack function. NOTE: this issue was originally REJECTed by its CNA before publication, but that decision is in active dispute. This candidate may change significantly in the future as a result of further discussion.

Vulnerable Product	Search on Vulmon	Subscribe to Product
php php
canonical ubuntu linux 4.10

Stefano Di Paola discovered integer overflows in PHP’s pack() and unpack() functions A malicious PHP script could exploit these to break out of safe mode and execute arbitrary code with the privileges of the PHP interpreter (CAN-2004-1018) ...

Synopsis php security update Type/Severity Security Advisory: Important Topic Updated php packages that fix various security issues are nowavailable for Red Hat Enterprise Linux 4This update has been rated as having important security impact by the Red HatSecurity Response Team Description ...

Synopsis php security update Type/Severity Security Advisory: Important Topic Updated php packages that fix various security issues are nowavailable for Red Hat Enterprise Linux 21 Description PHP is an HTML-embedded scripting language commonly used with the ApacheHTTP Web serverA double ...

Synopsis php security update Type/Severity Security Advisory: Important Topic Updated php packages that fix various security issues and bugs are nowavailable for Red Hat Enterprise Linux 3 Description PHP is an HTML-embedded scripting language commonly used with the ApacheHTTP Web serverF ...

source: wwwsecurityfocuscom/bid/11964/info PHP4 and PHP5 are reported prone to multiple local and remote vulnerabilities that may lead to code execution within the context of the vulnerable process The following specific issues are reported: A heap-based buffer overflow is reported to affect the PHP 'pack()' function call An attacker t ...

source: wwwsecurityfocuscom/bid/11964/info PHP4 and PHP5 are reported prone to multiple local and remote vulnerabilities that may lead to code execution within the context of the vulnerable process The following specific issues are reported: A heap-based buffer overflow is reported to affect the PHP 'pack()' function call An attacker ...

NVD-CWE-Other http://www.securityfocus.com/archive/1/384920 http://www.hardened-php.net/advisories/012004.txt http://www.php.net/release_4_3_10.php https://bugzilla.fedora.us/show_bug.cgi?id=2344 http://www.redhat.com/support/errata/RHSA-2005-032.html http://www.securityfocus.com/bid/12045 http://www.securityfocus.com/advisories/9028 http://www.redhat.com/support/errata/RHSA-2005-816.html http://www.mandriva.com/security/advisories?name=MDKSA-2004:151 http://www.mandriva.com/security/advisories?name=MDKSA-2005:072 http://www.osvdb.org/12411 http://marc.info/?l=bugtraq&m=110314318531298&w=2 https://www.ubuntu.com/usn/usn-99-1/https://exchange.xforce.ibmcloud.com/vulnerabilities/18515 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10949 https://usn.ubuntu.com/99-1/https://nvd.nist.gov https://www.exploit-db.com/exploits/24854/

CVE-2004-1018

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect