Exploitation Summary
EIP tracks 2 public exploits for CVE-2003-0172. PoCs published by The Warlock [BhQ], cyberdesu.
AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in PHP v4.3.x via the openlog() function. It uses a crafted payload with shellcode to achieve remote code execution on Windows 2000 SP4 with Apache 2.0.49 and PHP 4.3.5.
Description
Buffer overflow in openlog function for PHP 4.3.1 on Windows operating system, and possibly other OSes, allows remote attackers to cause a crash and possibly execute arbitrary code via a long filename argument.
Exploits (2)
This exploit targets a buffer overflow vulnerability in PHP v4.3.x via the openlog() function. It uses a crafted payload with shellcode to achieve remote code execution on Windows 2000 SP4 with Apache 2.0.49 and PHP 4.3.5.
This repository contains a functional Python exploit for CVE-2003-0172, a remote buffer overflow vulnerability in thttpd. The exploit sends a maliciously crafted HTTP GET request with an overly long path to trigger a denial-of-service (DoS) condition.