virus logo Intrusion Prevention

PHP.Htmlspecialchars.Htmlentities.Buffer.Overflow

description-logoDescription

This indicates an attack attempt against a Buffer Overflow vulnerability in PHP.
The vulnerability is caused due to an error while processing numeric entities by
the htmlspecialchars and htmlentities PHP functions. An attacker can exploit this by sending a malicious request to the server leading to a remote execution of arbitrary code in the security context of the HTTP service.

affected-products-logoAffected Products

PHP Group PHP 5.4SVN-2012-02-03

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are not aware of any vendor supplied patches.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 31228
Created Mar 06, 2012
Updated Nov 15, 2021
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
Default Action drop
Active
Affected OS Windows, Linux, BSD, Solaris, MacOS
Affected App PHP_app