CVE-2004-1018

Impact:
Low
Public Date:
2004-12-15
Bugzilla:
1617352: CVE-2004-1018 security flaw

The MITRE CVE dictionary describes this issue as:

Multiple integer handling errors in PHP before 4.3.10 allow attackers to bypass safe mode restrictions, cause a denial of service, or execute arbitrary code via (1) a negative offset value to the shmop_write function, (2) an "integer overflow/underflow" in the pack function, or (3) an "integer overflow/underflow" in the unpack function. NOTE: this issue was originally REJECTed by its CNA before publication, but that decision is in active dispute. This candidate may change significantly in the future as a result of further discussion.

Find out more about CVE-2004-1018 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Stronghold 4 for Red Hat Enterprise Linux RHSA-2005:816 2005-11-02
Red Hat Enterprise Linux 3 (php) RHSA-2004:687 2004-12-21
Red Hat Enterprise Linux 4 (php) RHSA-2005:032 2005-02-15
Red Hat Stronghold 4 RHSA-2005:882 2005-12-19
Red Hat Enterprise Linux 2.1 RHSA-2005:031 2005-01-19

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact Red Hat Product Security.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.