Description

Stack-based buffer overflow in the create_named_pipe function in libmysql.c in PHP 4.3.10 and 4.4.x before 4.4.3 for Windows allows attackers to execute arbitrary code via a long (1) arg_host or (2) arg_unix_socket argument, as demonstrated by a long named pipe variable in the host argument to the mysql_connect function.

Remediation

References

CVE-2006-0097

Related Vulnerabilities

WordPress Plugin Payment Form for PayPal Pro Multiple Cross-Site Scripting Vulnerabilities (1.0.1)

Ruby on Rails Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-0448)

WordPress Plugin Quick Paypal Payments Multiple Vulnerabilities (5.7.25)

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-4279)

WordPress Plugin Web Application Firewall-website security Unspecified Vulnerability (2.1.2)

Severity

High

Classification

CVE-2006-0097 CWE-119

Tags

Missing Update Known Vulnerabilities