Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2006-0097

Опубликовано: 06 янв. 2006
Источник: debian
EPSS Средний

Описание

Stack-based buffer overflow in the create_named_pipe function in libmysql.c in PHP 4.3.10 and 4.4.x before 4.4.3 for Windows allows attackers to execute arbitrary code via a long (1) arg_host or (2) arg_unix_socket argument, as demonstrated by a long named pipe variable in the host argument to the mysql_connect function.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
php4not-affectedpackage
php5not-affectedpackage

EPSS

Процентиль: 94%
0.12244
Средний

Связанные уязвимости

nvd логотип

CVE-2006-0097

nvd
больше 19 лет назад

Stack-based buffer overflow in the create_named_pipe function in libmysql.c in PHP 4.3.10 and 4.4.x before 4.4.3 for Windows allows attackers to execute arbitrary code via a long (1) arg_host or (2) arg_unix_socket argument, as demonstrated by a long named pipe variable in the host argument to the mysql_connect function.

github логотип

GHSA-r2p2-p8hv-j3x4

github
около 3 лет назад

Stack-based buffer overflow in the create_named_pipe function in libmysql.c in PHP 4.3.10 and 4.4.x before 4.4.3 for Windows allows attackers to execute arbitrary code via a long (1) arg_host or (2) arg_unix_socket argument, as demonstrated by a long named pipe variable in the host argument to the mysql_connect function.

EPSS

Процентиль: 94%
0.12244
Средний