Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple buffer overflows in php_iisfunc.dll in the iisfunc extension for PHP 5.2.0 and earlier allow context-dependent attackers to execute arbitrary code, probably during Unicode conversion, as demonstrated by a long string in the first argument to the iis_getservicestate function, related to the ServiceId argument to the (1) fnStartService, (2) fnGetServiceState, (3) fnStopService, and possibly other functions.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PHP 缓冲区溢出漏洞
Vulnerability Description
PHP 5.2.0版本及其早期版本的iisfunc扩展名的php_iisfunc.dll中存在多个缓冲区溢出。见机行事的攻击者在统一的字符编码标准会话中,执行任意代码,如iis_getservicestate函数的第一自变量的一个超长的自变量。该漏洞与(1) fnStartService, (2) fnGetServiceState, (3) fnStopService,以及其他函数的ServiceId自变量相关。
CVSS Information
N/A
Vulnerability Type
N/A