PHP.Pcrelib.Integer.Overflow
Description
This indicates a possible exploit of an integer-overflow error in pcrelib in PHP.
The vulnerability is due to a memory-corruption error that is triggered via quantifier values in regular expressions. An attacker may exploit this by sending a malicious PHP script, which may lead to arbitrary code execution.
Affected Products
PHP 5.0.5 and PHP 4.4.0
Impact
Compromise of the affected system.
Recommended Actions
Upgrade to PHP 5.1 and PHP 4.4.1.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |