Vulnerabilities > CVE-2003-0172 - Unspecified vulnerability in PHP 4.3.1

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

php

exploit available

NVD

Published: 2003-04-02

Updated: 2017-07-11

Summary

Buffer overflow in openlog function for PHP 4.3.1 on Windows operating system, and possibly other OSes, allows remote attackers to cause a crash and possibly execute arbitrary code via a long filename argument.

Vulnerable Configurations

Part	Description	Count
Application	Php PHP PHP 4.3.1	1

Exploit-Db

description	PHP <= 4.3.7 openlog() Buffer Overflow Exploit. CVE-2003-0172. Remote exploit for windows platform
id	EDB-ID:729
last seen	2016-01-31
modified	2004-12-28
published	2004-12-28
reporter	The Warlock [BhQ]
source	https://www.exploit-db.com/download/729/
title	PHP <= 4.3.7 openlog Buffer Overflow Exploit

References

http://www.securityfocus.com/bid/7210
http://www.securityfocus.com/archive/1/316583
http://www.securityfocus.com/archive/1/385238
http://www.osvdb.org/2113
http://marc.info/?l=bugtraq&m=104878149020152&w=2
http://marc.info/?l=bugtraq&m=104931415307111&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/11637