CVE-2007-1475

PHP < 4.4.6 - Buffer Overflow in Interbase Extension ibase_connect and ibase_pconnect Functions

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-1475. PoCs published by rgod.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in PHP's ibase_connect() and ibase_pconnect() functions (CVE-2007-1475). It crafts a malicious string to overwrite SEH and execute arbitrary shellcode, launching 'cmd.exe /c start notepad' as a proof of concept.

Description

Multiple buffer overflows in the (1) ibase_connect and (2) ibase_pconnect functions in the interbase extension in PHP 4.4.6 and earlier allow context-dependent attackers to execute arbitrary code via a long argument.

Exploits (1)

exploitdb WORKING POC VERIFIED

by rgod · phplocalwindows

https://www.exploit-db.com/exploits/3488

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in PHP's ibase_connect() and ibase_pconnect() functions (CVE-2007-1475). It crafts a malicious string to overwrite SEH and execute arbitrary shellcode, launching 'cmd.exe /c start notepad' as a proof of concept.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: PHP <= 4.4.6 with InterBase extension

No auth needed

Prerequisites: PHP <= 4.4.6 with InterBase extension enabled · Windows 2000 SP3 environment

MITRE ATT&CK