Computer Security
[EN] securityvulns.ru no-pyccku


PHP substr_compare information leak
Published:10.03.2007
Source:
SecurityVulns ID:7374
Type:remote
Threat Level:
5/10
Description:Integer overflow allows memory reading behind variable boundaries.
Affected:PHP : PHP 5.2
CVE:CVE-2007-1375 (Integer overflow in the substr_compare function in PHP 5.2.1 and earlier allows context-dependent attackers to read sensitive memory via a large value in the length argument, a different vulnerability than CVE-2006-1991.)
Original documentdocumentPHP-SECURITY, MOPB-14-2007:PHP substr_compare() Information Leak Vulnerability (10.03.2007)
Files:Exploits PHP 5 - substr_compare Information Leak Vulnerability

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod