Vulnerabilities > CVE-2003-0166 - Unspecified vulnerability in PHP

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

php

nessus

exploit available

NVD

Published: 2003-04-02

Updated: 2018-10-30

Summary

Integer signedness error in emalloc() function for PHP before 4.3.2 allow remote attackers to cause a denial of service (memory consumption) and possibly execute arbitrary code via negative arguments to functions such as (1) socket_recv, (2) socket_recvfrom, and possibly other functions.

Vulnerable Configurations

Part	Description	Count
Application	Php PHP PHP 4.0 PHP PHP 4.0.1 PHP PHP 4.0.2 PHP PHP 4.0.3 PHP PHP 4.0.4 PHP PHP 4.0.5 PHP PHP 4.0.6 PHP PHP 4.0.7 PHP PHP 4.1.0 PHP PHP 4.1.1 PHP PHP 4.1.2 PHP PHP 4.2.0 PHP PHP 4.2.1 PHP PHP 4.2.2 PHP PHP 4.2.3 PHP PHP 4.3.0 PHP PHP 4.3.1	17

Exploit-Db

description	PHP 4.x socket_recv() Signed Integer Memory Corruption Vulnerability. CVE-2003-0166. Dos exploit for php platform
id	EDB-ID:22425
last seen	2016-02-02
modified	2003-03-26
published	2003-03-26
reporter	Sir Mordred
source	https://www.exploit-db.com/download/22425/
title	PHP 4.x socket_recv Signed Integer Memory Corruption Vulnerability

description	PHP 4.x socket_recvfrom() Signed Integer Memory Corruption Vulnerability. CVE-2003-0166 . Dos exploit for php platform
id	EDB-ID:22426
last seen	2016-02-02
modified	2003-03-26
published	2003-03-26
reporter	Sir Mordred
source	https://www.exploit-db.com/download/22426/
title	PHP 4.x socket_recvfrom Signed Integer Memory Corruption Vulnerability

description	PHP 4.3 socket_iovec_alloc() Integer Overflow Vulnerability. CVE-2003-0166. Dos exploit for php platform
id	EDB-ID:22419
last seen	2016-02-02
modified	2003-03-25
published	2003-03-25
reporter	Sir Mordred
source	https://www.exploit-db.com/download/22419/
title	PHP 4.3 socket_iovec_alloc Integer Overflow Vulnerability

Nessus

NASL family	CGI abuses
NASL id	PHP_SOCKET_IOVEC_ALLOC_OVERFLOW.NASL
description	The remote host is running a version of PHP that is older than 4.3.2. There is a flaw in this version that could allow an attacker who has the ability to inject an arbitrary argument to the function socket_iovec_alloc() to crash the remote service and possibly to execute arbitrary code. For this attack to work, PHP has to be compiled with the option --enable-sockets (which is disabled by default), and an attacker needs to be able to pass arbitrary values to socket_iovec_alloc(). Other functions are vulnerable to such flaws : openlog(), socket_recv(), socket_recvfrom() and emalloc()
last seen	2020-06-01
modified	2020-06-02
plugin id	11468
published	2003-03-25
reporter	This script is Copyright (C) 2003-2018 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/11468
title	PHP socket_iovec_alloc() Function Overflow

Summary

Vulnerable Configurations

Exploit-Db

Nessus

References