Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability - CVE-2006-0097 - Vulnerability Database
PHP

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability - CVE-2006-0097

High
Reference: CVE-2006-0097
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2006-0097
Title: PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability
Overview:

Stack-based buffer overflow in the create_named_pipe function in libmysql.c in PHP 4.3.10 and 4.4.x before 4.4.3 for Windows allows attackers to execute arbitrary code via a long (1) arg_host or (2) arg_unix_socket argument as demonstrated by a long named pipe variable in the host argument to the mysql_connect function.