CVE-2007-1383

CRITICAL

PHP 4 - Remote Code Execution via 16-bit Reference Counter Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-1383. PoCs published by Stefan Esser.

AI-analyzed exploit summary This exploit leverages a ZVAL reference counter overflow in PHP 4 to achieve remote code execution by manipulating memory structures and executing arbitrary shellcode.

Description

Integer overflow in the 16 bit variable reference counter in PHP 4 allows context-dependent attackers to execute arbitrary code by overflowing this counter, which causes the same variable to be destroyed twice, a related issue to CVE-2007-1286.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Stefan Esser · phpdosmultiple

https://www.exploit-db.com/exploits/3394

View Code ZIP pw:eip

This exploit leverages a ZVAL reference counter overflow in PHP 4 to achieve remote code execution by manipulating memory structures and executing arbitrary shellcode.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Complex

Reliability

Racy

Target: PHP 4

No auth needed

Prerequisites: PHP 4 installation with vulnerable memory management

MITRE ATT&CK