[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2006-4812Date: (C)2006-10-10   (M)2023-12-22


Integer overflow in PHP 5 up to 5.1.6 and 4 before 4.3.0 allows remote attackers to execute arbitrary code via an argument to the unserialize PHP function with a large value for the number of array elements, which triggers the overflow in the Zend Engine ecalloc function (Zend/zend_alloc.c).

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 10.0
Exploit Score: 10.0
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
SECTRACK-1016984
SREASON-1691
2006-0055
http://www.securityfocus.com/archive/1/archive/1/448014/100/0/threaded
BID-20349
SECUNIA-22280
SECUNIA-22281
SECUNIA-22300
SECUNIA-22331
SECUNIA-22338
SECUNIA-22533
SECUNIA-22538
SECUNIA-22650
ADV-2006-3922
GLSA-200610-14
OpenPKG-SA-2006.023
RHSA-2006:0688
RHSA-2006:0708
SUSE-SA:2006:059
USN-362-1
http://cvs.php.net/viewvc.cgi/ZendEngine2/zend_alloc.c?r1=1.161&r2=1.162
http://support.avaya.com/elmodocs2/security/ASA-2006-223.htm
http://support.avaya.com/elmodocs2/security/ASA-2006-234.htm
http://www.hardened-php.net/advisory_092006.133.html
http://www.hardened-php.net/files/CVE-2006-4812.patch
php-ecalloc-integer-overflow(29362)

CPE    28
cpe:/a:php:php:5.1
cpe:/a:php:php:4.0
cpe:/a:php:php:5.0.0
cpe:/a:php:php:5.0.5
...
CWE    1
CWE-94

© SecPod Technologies