Description

Integer overflow in the zip_read_entry function in PHP 4 before 4.4.5 allows remote attackers to execute arbitrary code via a ZIP archive that contains an entry with a length value of 0xffffffff, which is incremented before use in an emalloc call, triggering a heap overflow.

Remediation

References

CVE-2007-1777

Related Vulnerabilities

Atlassian Jira Improper Authentication Vulnerability (CVE-2022-0540)

WordPress Plugin WooCommerce Multiple Vulnerabilities (2.3.5)

WordPress 4.4.x Directory Traversal (4.4 - 4.4.32)

Apache HTTP Server Other Vulnerability (CVE-2003-1307)

MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-29903)

Severity

High

Classification

CVE-2007-1777

Tags

Missing Update Known Vulnerabilities