Published: 11/05/2012 Updated: 29/08/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 585

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Buffer overflow in the apache_request_headers function in sapi/cgi/cgi_main.c in PHP 5.4.x prior to 5.4.3 allows remote malicious users to cause a denial of service (application crash) via a long string in the header of an HTTP request.

Vulnerable Product	Search on Vulmon	Subscribe to Product
php php 5.4.2
php php 5.4.0
php php 5.4.1

## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # web site for more information on licensing and terms of use # metasploitcom/ ## require 'msf/core' class Metasploit3 < Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::R ...

Underscore/tolower Safe Encoder used to exploit CVE-2012-2329 It is a modified version of the 'Avoid UTF8/tolower' encoder by skape Please check the documentation of the skape encoder before using it As the original, this encoder expects ECX pointing to the start of the encoded payload Also BufferOffset must be p ...

Underscore/tolower Safe Encoder used to exploit CVE-2012-2329. It is a modified version of the 'Avoid UTF8/tolower' encoder by skape. Please check the documentation of the skape encoder before using it. As the original, this encoder expects ECX pointing to the start of the encoded payload. Also BufferOffset must be provided if needed. The changes introduced are (1) avoid the use of the 0x5f byte (underscore) in because it is a badchar in the CVE-2012-2329 case and (2) optimize the transformation block, having into account more relaxed conditions about bad characters greater than 0x80.

CWE-119 http://www.php.net/ChangeLog-5.php#5.4.3 https://bugzilla.redhat.com/show_bug.cgi?id=820000 http://www.php.net/archive/2012.php#id2012-05-08-1 https://bugs.php.net/bug.php?id=61807 http://www.securityfocus.com/bid/53455 http://secunia.com/advisories/49014 https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03839862 https://exchange.xforce.ibmcloud.com/vulnerabilities/75545 https://nvd.nist.gov https://www.exploit-db.com/exploits/19231/https://www.rapid7.com/db/modules/encoder/x86/avoid_underscore_tolower

CVE-2012-2329

Vulnerability Summary

Exploits

Metasploit Modules

References

Vulmon Search

About

Products

Connect