CVEs-PoC/2011/CVE-2011-1471.md at 8e2ebbf9bd04edab52d0cbcbc6c2f6e2cfdaa67d

mirror of https://github.com/0xMarcio/cve.git synced 2026-03-03 00:04:43 +00:00

Files

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

Integer signedness error in zip_stream.c in the Zip extension in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (CPU consumption) via a malformed archive file that triggers errors in zip_fread function calls.

POC

Reference

http://www.mandriva.com/security/advisories?name=MDVSA-2011:052

Github

https://github.com/Live-Hack-CVE/CVE-2011-1471

740 B Raw Blame History

CVE-2011-1471

Description

POC

Reference

Github

740 B

Raw Blame History