CVE-2007-1581

Php - Code Injection

Title source: rule

Description

The resource system in PHP 5.0.0 through 5.2.1 allows context-dependent attackers to execute arbitrary code by interrupting the hash_update_file function via a userspace (1) error or (2) stream handler, which can then be used to destroy and modify internal resources. NOTE: it was later reported that PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 are also affected.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Stefan Esser · phplocallinux

https://www.exploit-db.com/exploits/3529

View Code ZIP pw:eip

References (6)

[Exploit] http://php-security.org/2010/05/01/mops-2010-001-php-hash_update_file-already-freed-resource-access-vulnerability/index.html

[Vendor Advisory] http://secunia.com/advisories/24542

[Exploit, Vendor Advisory] http://www.php-security.org/MOPB/MOPB-28-2007.html

[Exploit] http://www.securityfocus.com/bid/23062

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/33248

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/3529

Scores

EPSS 0.1045

EPSS Percentile 93.3%

Details

CWE

CWE-94

Status published

Products (31)

php/php 5.0 rc1 (3 CPE variants)

php/php 5.0.0

php/php 5.0.1

php/php 5.0.2

php/php 5.0.3

php/php 5.0.4

php/php 5.0.5

php/php 5.1.0

php/php 5.1.1

php/php 5.1.2

... and 21 more

Published Mar 21, 2007

Tracked Since Feb 18, 2026