CVE-2010-4645

PHP 5.2-5.2.16 and 5.3-5.3.4 - Denial of Service via Floating-Point Parsing

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-4645. PoCs published by Rick Regan.

AI-analyzed exploit summary This exploit triggers a denial-of-service condition in PHP by leveraging a floating-point arithmetic issue. The specific value causes PHP to hang due to improper handling of the floating-point number.

Description

strtod.c, as used in the zend_strtod function in PHP 5.2 before 5.2.17 and 5.3 before 5.3.5, and other products, allows context-dependent attackers to cause a denial of service (infinite loop) via a certain floating-point value in scientific notation, which is not properly handled in x87 FPU registers, as demonstrated using 2.2250738585072011e-308.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Rick Regan · phpdosphp
https://www.exploit-db.com/exploits/35164

This exploit triggers a denial-of-service condition in PHP by leveraging a floating-point arithmetic issue. The specific value causes PHP to hang due to improper handling of the floating-point number.

Classification
Working Poc 100%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: PHP 5.3.3 (and potentially other versions)
No auth needed
Prerequisites: PHP application accessible to the attacker
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (28)

Core 28
Core References
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0077
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/45668
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=133226187115472&w=2
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/42812
Mailing List vendor-advisory x_refsource_hp
http://marc.info/?l=bugtraq&m=133469208622507&w=2
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-0196.html
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053355.html
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2011/01/05/8
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-0195.html
Exploit x_refsource_confirm
http://bugs.php.net/53632
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0198
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0066
Vendor Advisory vendor-advisory x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-1042-1
Mailing List vendor-advisory x_refsource_apple
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html
Mailing List, Third Party Advisory vendor-advisory x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053333.html
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/42843
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0060
Vendor Advisory x_refsource_confirm
http://support.apple.com/kb/HT5002
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/64470
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/43189
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/43051
Exploit, Patch mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2011/01/05/2
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2011/01/06/5

Scores

EPSS 0.1510
EPSS Percentile 96.3%

Details

CWE
CWE-189
Status published
Products (22)
php/php 5.2.0
php/php 5.2.1
php/php 5.2.2
php/php 5.2.3
php/php 5.2.4
php/php 5.2.5
php/php 5.2.6
php/php 5.2.7
php/php 5.2.8
php/php 5.2.9
... and 12 more
Published Jan 11, 2011
Tracked Since Feb 18, 2026