Rapid7 Vulnerability & Exploit Database

PHP 5.2.0 Memory Manager Signed Comparision Vulnerability

Back to Search

PHP 5.2.0 Memory Manager Signed Comparision Vulnerability

Severity
8
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
04/06/2007
Created
07/25/2018
Added
09/16/2010
Modified
02/13/2015

Description

Integer signedness error in the _zend_mm_alloc_int function in the Zend Memory Manager in PHP 5.2.0 allows remote attackers to execute arbitrary code via a large emalloc request, related to an incorrect signed long cast, as demonstrated via the HTTP SOAP client in PHP, and via a call to msg_receive with the largest positive integer value of maxsize.

Solution(s)

  • php-upgrade-5_2_1

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;