PHP.Pcrelib.Integer.Overflow

description-logoDescription

This indicates a possible exploit of an integer-overflow error in pcrelib in PHP.
The vulnerability is due to a memory-corruption error that is triggered via quantifier values in regular expressions. An attacker may exploit this by sending a malicious PHP script, which may lead to arbitrary code execution.

affected-products-logoAffected Products

PHP 5.0.5 and PHP 4.4.0

Impact logoImpact

Compromise of the affected system.

recomended-action-logoRecommended Actions

Upgrade to PHP 5.1 and PHP 4.4.1.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)