CVE-2004-1018: Integer Overflow
First published: Wed Dec 08 2004(Updated: )
Multiple integer handling errors in PHP before 4.3.10 allow attackers to bypass safe mode restrictions, cause a denial of service, or execute arbitrary code via (1) a negative offset value to the shmop_write function, (2) an "integer overflow/underflow" in the pack function, or (3) an "integer overflow/underflow" in the unpack function. NOTE: this issue was originally REJECTed by its CNA before publication, but that decision is in active dispute. This candidate may change significantly in the future as a result of further discussion.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| PHP | <4.3.10 | |
| Ubuntu | =4.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securityfocus.com/archive/1/384920
- http://www.hardened-php.net/advisories/012004.txt
- http://www.php.net/release_4_3_10.php
- https://bugzilla.fedora.us/show_bug.cgi?id=2344
- http://www.redhat.com/support/errata/RHSA-2005-032.html
- http://www.securityfocus.com/bid/12045
- http://www.securityfocus.com/advisories/9028
- http://www.redhat.com/support/errata/RHSA-2005-816.html
- http://www.mandriva.com/security/advisories?name=MDKSA-2004:151
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:072
- http://www.osvdb.org/12411
- http://marc.info/?l=bugtraq&m=110314318531298&w=2
- https://www.ubuntu.com/usn/usn-99-1/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18515
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10949
Frequently Asked Questions
What is the severity of CVE-2004-1018?
CVE-2004-1018 is considered to be of high severity due to the potential for remote code execution, denial of service, and the ability to bypass safe mode restrictions.
How do I fix CVE-2004-1018?
To fix CVE-2004-1018, upgrade PHP to version 4.3.10 or later, or apply any patches provided by your distribution.
What vulnerabilities are associated with CVE-2004-1018?
CVE-2004-1018 is associated with integer handling errors in PHP that can lead to denial of service, arbitrary code execution, and safe mode bypass.
Which versions of PHP are affected by CVE-2004-1018?
CVE-2004-1018 affects all PHP versions prior to 4.3.10.
Can CVE-2004-1018 be exploited remotely?
Yes, CVE-2004-1018 can be exploited remotely by attackers taking advantage of the integer handling errors in PHP.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/author
- agent/severity
- agent/status
- agent/last-modified-date
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/php
- canonical/php
- vendor/canonical
- canonical/ubuntu
- version/ubuntu/4.10
- status/rejected