CVE-2007-1413

Php < 5.2.3 - Memory Corruption

Title source: rule

Description

Buffer overflow in the snmpget function in the snmp extension in PHP 5.2.3 and earlier, including PHP 4.4.6 and probably other PHP 4 versions, allows context-dependent attackers to execute arbitrary code via a long value in the third argument (object id).

Exploits (3)

exploitdb WORKING POC VERIFIED

by Inphex · phplocalwindows

https://www.exploit-db.com/exploits/4274

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by shinnai · phplocalwindows

https://www.exploit-db.com/exploits/4204

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by rgod · phplocalwindows

https://www.exploit-db.com/exploits/3439

View Code ZIP pw:eip

References (6)

[Various Sources] http://retrogod.altervista.org/php_446_snmpget_local_bof.html

[Exploit] http://www.securityfocus.com/bid/22893

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/35517

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/3439

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/4204

[Third Party Advisory] http://secunia.com/advisories/24440

Scores

EPSS 0.1559

EPSS Percentile 94.7%

Details

CWE

CWE-119

Status published

Products (2)

php/php 4.4.6

php/php < 5.2.3

Published Mar 12, 2007

Tracked Since Feb 18, 2026