PHP 'htmlspecialchars()' Function Buffer Overflow Vulnerability
BID:51860
Info
PHP 'htmlspecialchars()' Function Buffer Overflow Vulnerability
| Bugtraq ID: | 51860 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 03 2012 12:00AM |
| Updated: | Feb 03 2012 12:00AM |
| Credit: | cataphract |
| Vulnerable: | |
| Not Vulnerable: | |
Discussion
PHP 'htmlspecialchars()' Function Buffer Overflow Vulnerability
PHP is prone to a buffer-overflow vulnerability because it fails to perform boundary checks before copying user-supplied data to insufficiently sized memory buffers.
An attacker can exploit this issue to execute arbitrary machine code in the context of the PHP process. Failed exploit attempts will likely crash the webserver, denying service to legitimate users.
PHP 5.4 is vulnerable; other versions may also be affected.
PHP is prone to a buffer-overflow vulnerability because it fails to perform boundary checks before copying user-supplied data to insufficiently sized memory buffers.
An attacker can exploit this issue to execute arbitrary machine code in the context of the PHP process. Failed exploit attempts will likely crash the webserver, denying service to legitimate users.
PHP 5.4 is vulnerable; other versions may also be affected.
Exploit / POC
PHP 'htmlspecialchars()' Function Buffer Overflow Vulnerability
The following proof-of-concept code is available:
The following proof-of-concept code is available:
Solution / Fix
PHP 'htmlspecialchars()' Function Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].