CVE-2007-1453

PHP <5.2.0 - RCE

Title source: llm

Description

Buffer underflow in the PHP_FILTER_TRIM_DEFAULT macro in the filtering extension (ext/filter) in PHP 5.2.0 allows context-dependent attackers to execute arbitrary code by calling filter_var with certain modes such as FILTER_VALIDATE_INT, which causes filter to write a null byte in whitespace that precedes the buffer.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Stefan Esser · phpremotephp

https://www.exploit-db.com/exploits/29732

View Code ZIP pw:eip

References (7)

[Third Party Advisory] http://secunia.com/advisories/25056

[Third Party Advisory] http://secunia.com/advisories/25062

[Exploit] http://www.securityfocus.com/bid/22922

[Various Sources] http://www.php-security.org/MOPB/MOPB-19-2007.html

[Vendor Advisory] http://www.novell.com/linux/security/advisories/2007_32_php.html

[Release Notes] http://www.php.net/releases/5_2_1.php

[Third Party Advisory] http://www.debian.org/security/2007/dsa-1283

Scores

EPSS 0.0279

EPSS Percentile 86.1%

Details

Status published

Products (1)

php/php 5.2.0

Published Mar 14, 2007

Tracked Since Feb 18, 2026