Computer Security

PHP Ovrimos extension safe mode protection bypass
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



PHP Ovrimos extension safe mode protection bypass
Published:06.03.2007
Source:PHP-SECURITY
SecurityVulns ID:7356
Type:local
Level:4/10
Description:There are numerous code exectuion possibilities.
Affected:PHP : PHP 4.4
CVE:CVE-2007-1379 (The ovrimos_close function in the Ovrimos extension for PHP before 4.4.5 can trigger efree of an arbitrary address, which might allow context-dependent attackers to execute arbitrary code.)
 CVE-2007-1378 (The ovrimos_longreadlen function in the Ovrimos extension for PHP before 4.4.5 allows context-dependent attackers to write to arbitrary memory locations via the result_id and length arguments.)
Original documentdocumentPHP-SECURITY, MOPB-13-2007:PHP 4 Ovrimos Extension Multiple Vulnerabilities (06.03.2007)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru