CVE-2009-0754

PHP <4.4.4, <5.1.6 - Code Injection

Title source: llm

Description

PHP 4.4.4, 5.1.6, and other versions, when running on Apache, allows local users to modify behavior of other sites hosted on the same web server by modifying the mbstring.func_overload setting within .htaccess, which causes this setting to be applied to other virtual hosts on the same server.

Exploits (1)

exploitdb WORKING POC VERIFIED

by strategma · phpdosphp

https://www.exploit-db.com/exploits/32769

View Code ZIP pw:eip

References (17)

[Exploit, Vendor Advisory] http://bugs.php.net/bug.php?id=27421

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00003.html

[Third Party Advisory] http://secunia.com/advisories/34642

[Third Party Advisory] http://secunia.com/advisories/34830

[Third Party Advisory] http://secunia.com/advisories/35003

[Third Party Advisory] http://secunia.com/advisories/35007

[Third Party Advisory] http://secunia.com/advisories/35306

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2009-0350.html

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1021979

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11035

[Vendor Advisory] https://usn.ubuntu.com/761-1/

[Vendor Advisory] https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01451.html

[Vendor Advisory] https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01465.html

[Third Party Advisory] http://www.debian.org/security/2009/dsa-1789

[Mailing List] http://www.openwall.com/lists/oss-security/2009/01/30/1

[Mailing List] http://www.openwall.com/lists/oss-security/2009/02/03/3

[Mailing List] http://www.openwall.com/lists/oss-security/2009/02/25/3

Scores

EPSS 0.0016

EPSS Percentile 36.7%

Details

CWE

CWE-134

Status published

Products (2)

php/php 4.4.4

php/php 5.1.6

Published Mar 03, 2009

Tracked Since Feb 18, 2026