Vulnerabilities > CVE-2003-0172 - Buffer Overflow vulnerability in PHP 4.3.1

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
php
exploit available

Summary

Buffer overflow in openlog function for PHP 4.3.1 on Windows operating system, and possibly other OSes, allows remote attackers to cause a crash and possibly execute arbitrary code via a long filename argument.

Vulnerable Configurations

Part Description Count
Application
Php
1

Exploit-Db

descriptionPHP <= 4.3.7 openlog() Buffer Overflow Exploit. CVE-2003-0172. Remote exploit for windows platform
idEDB-ID:729
last seen2016-01-31
modified2004-12-28
published2004-12-28
reporterThe Warlock [BhQ]
sourcehttps://www.exploit-db.com/download/729/
titlePHP <= 4.3.7 openlog Buffer Overflow Exploit