Description

Buffer overflow in php_win32std.dll in the win32std extension for PHP 5.2.0 and earlier allows context-dependent attackers to execute arbitrary code via a long string in the filename argument to the win_browse_file function.

Remediation

References

CVE-2007-4441

Related Vulnerabilities

Oracle Database Server CVE-2014-6453 Vulnerability (CVE-2014-6453)

WordPress Plugin cformsII Arbitrary File Upload (14.7)

OpenSSL Improper Locking Vulnerability (CVE-2022-3996)

MySQL CVE-2022-21288 Vulnerability (CVE-2022-21288)

PHP Use of Externally-Controlled Format String Vulnerability (CVE-2010-2094)

Severity

Medium

Classification

CVE-2007-4441

Tags

Missing Update Known Vulnerabilities