Main
Vulnerability Database
Exploits
ID:11530 - Exploit for Input validation error in PHP - CVE-2003-0172
ID:11530 - Exploit for Input validation error in PHP - CVE-2003-0172
Published: June 10, 2025
Vulnerability identifier: #VU110531
Vulnerability risk: Medium
CVE-ID: CVE-2003-0172
CWE-ID: CWE-20
Exploitation vector: Remote access
Vulnerable software:
PHP
PHP
Link to public exploit:
Vulnerability description
The vulnerability allows a remote non-authenticated attacker to read and manipulate data.
Buffer overflow in openlog function for PHP 4.3.1 on Windows operating system, and possibly other OSes, allows remote attackers to cause a crash and possibly execute arbitrary code via a long filename argument.
Remediation
Install update from vendor's website.