CVE-2007-4441
PHP <5.2.0 - Buffer Overflow
Title source: llmDescription
Buffer overflow in php_win32std.dll in the win32std extension for PHP 5.2.0 and earlier allows context-dependent attackers to execute arbitrary code via a long string in the filename argument to the win_browse_file function.
Exploits (3)
exploitdb
WORKING POC
VERIFIED
by NetJackal · phplocalwindows
https://www.exploit-db.com/exploits/4303
exploitdb
WORKING POC
VERIFIED
by boecke · phpdoswindows_x86
https://www.exploit-db.com/exploits/4293
Scores
EPSS
0.0038
EPSS Percentile
59.6%
Details
Status
published
Products (1)
php/php
< 5.2.0
Published
Aug 21, 2007
Tracked Since
Feb 18, 2026