mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
844 B
844 B
CVE-2012-2376
Description
Buffer overflow in the com_print_typeinfo function in PHP 5.4.3 and earlier on Windows allows remote attackers to execute arbitrary code via crafted arguments that trigger incorrect handling of COM object VARIANT types, as exploited in the wild in May 2012.
POC
Reference
- http://isc.sans.edu/diary.html?storyid=13255
- http://openwall.com/lists/oss-security/2012/05/20/2
- https://bugzilla.redhat.com/show_bug.cgi?id=823464
Github
No PoCs found on GitHub currently.