NVD

Id
58837  
Name
CVE-2006-0097  
Description
Stack-based buffer overflow in the create_named_pipe function in libmysql.c in PHP 4.3.10 and 4.4.x before 4.4.3 for Windows allows attackers to execute arbitrary code via a long (1) arg_host or (2) arg_unix_socket argument, as demonstrated by a long named pipe variable in the host argument to the mysql_connect function.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2016-12-20  
Published
2006-01-06  
Modified Date
2011-08-01  
Seq
2006-0097  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
302118 58837 CVE-2006-0097 20060108 RE: Windows PHP 4.x "0-day" buffer overflow  View
302119 58837 CVE-2006-0097 20060105 Windows PHP 4.x "0-day" buffer overflow  View
302120 58837 CVE-2006-0097 http://www.php.net/ChangeLog-4.php#4.4.3  View
302121 58837 CVE-2006-0097 20060105 Windows PHP 4.x "0-day" buffer overflow  View
302122 58837 CVE-2006-0097 16145  View
302123 58837 CVE-2006-0097 ADV-2006-0046  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
57811 JVNDB-2006-000007 PHP の create_named_pipe() 関数におけるバッファオーバーフローの脆弱性 PHP に実装される libmysql.c の create_named_pipe() 関数には、mysql_connect() 組み込み関数の Server パラメータに渡される名前付きパイプ名の妥当性の確認に不備があるため、過度に長い名前付きパイプ名が引き渡された場合にバッファオーバーフローが発生する脆弱性が存在します。 CVE-2006-0097 16199 CVE-2006-0097 58837 7.5 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-000007.html 2006-01-05 2007-04-01 View