header-logo
Suggest Exploit
vendor:
PHP
by:
Not mentioned
7.5
CVSS
HIGH
Format-String Vulnerabilities
134
CWE
Product Name: PHP
Affected Version From: 5.3
Affected Version To: 5.3.2002
Patch Exists: NO
Related CWE: Not mentioned
CPE: a:php:php
Metasploit:
Other Scripts:
Platforms Tested: Not mentioned
2010

PHP Multiple Format-String Vulnerabilities

PHP is prone to multiple format-string vulnerabilities because it fails to properly sanitize user-supplied input before passing it as the format specifier to a formatted-printing function. Attackers can exploit these issues to run arbitrary code within the context of the PHP process. This may allow them to bypass intended security restrictions or gain elevated privileges.

Mitigation:

Upgrade to PHP version 5.3.3 or later.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/40173/info


PHP is prone to multiple format-string vulnerabilities because it fails to properly sanitize user-supplied input before passing it as the format specifier to a formatted-printing function.

Attackers can exploit these issues to run arbitrary code within the context of the PHP process. This may allow them to bypass intended security restrictions or gain elevated privileges.

PHP 5.3 through 5.3.2 are vulnerable. 

$ php -r "fopen('phar:///usr/bin/phar.phar/*%08x-%08x-%08x-%08x-%08x-%08x-%08x-%08x-%08x','r');"

Navigation

Suggest Exploit

Services By CQR