[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249966

 
 

909

 
 

195636

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2002-0081Date: (C)2002-03-08   (M)2023-12-22


Buffer overflows in (1) php_mime_split in PHP 4.1.0, 4.1.1, and 4.0.6 and earlier, and (2) php3_mime_split in PHP 3.0.x allows remote attackers to execute arbitrary code via a multipart/form-data HTTP POST request when file_uploads is enabled.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 7.5
Exploit Score: 10.0
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
http://marc.info/?l=vuln-dev&m=101468694824998&w=2
http://marc.info/?l=bugtraq&m=101484705523351&w=2
http://marc.info/?l=ntbugtraq&m=101484975231922&w=2
http://marc.info/?l=bugtraq&m=101497256024338&w=2
http://marc.info/?l=bugtraq&m=101537076619812&w=2
BID-4183
CA-2002-05
CLA-2002:468
DSA-115
ESA-20020301-006
HPSBTL0203-028
MDKSA-2002:017
RHSA-2002:035
RHSA-2002:040
SuSE-SA:2002:007
VU#297363
http://security.e-matters.de/advisories/012002.html
http://www.php.net/downloads.php
php-file-upload-overflow(8281)

CPE    4
cpe:/a:php:php:3.0
cpe:/a:php:php:4.0.6
cpe:/a:php:php:4.1.1
cpe:/a:php:php:4.1.0
...

© SecPod Technologies