reuse remote memory corruption vulnerability after "replace()" release

Posted by barello at 2020-03-22

PHP is a widely used general purpose scripting language, which is especially suitable for web development and can be embedded in HTML.

PHP's "substr_replace()" function is vulnerable to reuse remote memory corruption after release. Remote attackers can use this vulnerability to execute arbitrary code in the network server, resulting in a denial of service.

The vulnerability lies in that when the same variable is sent to the "substr_replace()" function multiple times, PHP will make three variables in the function use the same pointer, so when the type conversion in the function changes the pointer, the pointer will also make other variables invalid.




It is recommended to upgrade PHP products to the latest version. Please go to the manufacturer's homepage to download: