Description
Buffer overflow in the mSQL extension in PHP 5.2.3 allows context-dependent
attackers to execute arbitrary code via a long first argument to the
msql_connect function.
Notes
| jdstrand | needs malicious script to be effective |
| kees | mSQL connector is not built in Debian/Ubuntu |
Package
| Upstream: | released
(5.2.4)
|
Updated: 2019-12-05 20:44:16 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)