PHP Other Vulnerability (CVE-2008-0599)

Description

The init_request_info function in sapi/cgi/cgi_main.c in PHP before 5.2.6 does not properly consider operator precedence when calculating the length of PATH_TRANSLATED, which might allow remote attackers to execute arbitrary code via a crafted URI.

Remediation

References

CVE-2008-0599

Related Vulnerabilities

Liferay DXP Incorrect Default Permissions Vulnerability (CVE-2022-42130)

OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-0206)

PHP socket_iovec_alloc() integer overflow

WordPress Plugin Toolset Types-Custom Post Types, Custom Fields and Taxonomies Multiple Unspecified Vulnerabilities (2.2.2)

Plone CMS Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-4041)

Severity

Critical

Classification