Arbitrary Code Execution via Buffer Overflow in PHP MIME Split Functions

Arbitrary Code Execution via Buffer Overflow in PHP MIME Split Functions

CVE-2002-0081 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Buffer overflows in (1) php_mime_split in PHP 4.1.0, 4.1.1, and 4.0.6 and earlier, and (2) php3_mime_split in PHP 3.0.x allows remote attackers to execute arbitrary code via a multipart/form-data HTTP POST request when file_uploads is enabled.

Learn more about our Web Application Penetration Testing UK.