Stack-based buffer overflow in the create_named_pipe function in libmysql.c in PHP 4.3.10 and 4.4.x prior to 4.4.3 for Windows allows malicious users to execute arbitrary code via a long (1) arg_host or (2) arg_unix_socket argument, as demonstrated by a long named pipe variable in the host argument to the mysql_connect function.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
php php 4.4.0 |
||
php php 4.4.1 |
||
php php 4.3.10 |
||
php php 4.4.2 |