Author: Stefan Esser

Country: de

Reported research: 61

Advisories

Risk	Topic & Details
High	setattrlist() iOS Kernel Vulnerability Explained Local \| 2017-08-24
High	Apple OS X DYLD_PRINT_TO_FILE Privilege Escalation Local \| 2015-07-24
High	PHP 5.6.3 unserialize() execute arbitrary code (CVE assigned) Remote \| 2014-12-22
High	PHP 5.4.29 phpinfo() SSL Private Keys Leak PoC Remote \| 2014-07-06
High	PHP 5.4.29 phpinfo() Type Confusion Information Leak Vulnerability Local \| 2014-07-03
High	PHP 5.6 heap-based buffer overflow in DNS TXT record parsing (CVE assigned) Remote \| 2014-06-12
High	PHP 5.5.6/5.4.22 openssl_x509_parse() Memory Corruption (CVE assigned) Remote \| 2013-12-16
Med.	PHP 5.3.9/5.4.0RC6 Denial of Service Remote \| 2012-02-05
High	Suhosin PHP Extension Transparent Cookie Encryption Stack Buffer Overflow (CVE assigned) Remote \| 2012-01-20
High	eFront ask_chat.php SQL Injection Vulnerability (CVE assigned) Remote \| 2010-05-23
Med.	PHP ZipArchive::extractTo() Directory Traversal Vulnerability (CVE assigned) Local \| 2008-12-05
Med.	Wordpress user_login Column SQL Truncation Vulnerability (CVE assigned) Remote \| 2008-09-12
High	Joomla Weak Random Password Reset Token Vulnerability (CVE assigned) Remote \| 2008-09-11
Med.	PHP GENERATE_SEED() Weak Random Number Seed Vulnerability (CVE assigned) Local \| 2008-05-09
Med.	PHP session.save_path open_basedir Bypass Vulnerability (CVE assigned) Local \| 2007-04-01
Med.	PHP 4 zip_entry_read() Integer Overflow Vulnerability (CVE assigned) Local \| 2007-04-01
Low	PHP mail() Header Injection Through Subject and To Parameters (CVE assigned) Remote Local \| 2007-04-01
Low	PHP mail() Message ASCIIZ Byte Truncation (CVE assigned) Remote Local \| 2007-04-01
Med.	PHP 4.4.5/4.4.6 session_decode() Double Free Vulnerability (CVE assigned) Local \| 2007-04-01
Med.	PHP _SESSION Deserialization Overwrite Vulnerability (CVE assigned) Remote Local \| 2007-04-01
High	PHP _SESSION unset() Vulnerability (CVE assigned) Local \| 2007-04-01
Med.	PHP 5.2.1 unserialize() Information Leak Vulnerability (CVE assigned) Local \| 2007-04-01
Med.	PHP hash_update_file() Already Freed Resource Access Vulnerability (CVE assigned) Local \| 2007-04-01
High	PHP ext/gd Already Freed Resource Access Vulnerability (CVE assigned) Local \| 2007-04-01
Low	PHP mb_parse_str() register_globals Activation Vulnerability (CVE assigned) Local \| 2007-04-01
High	PHP header() Space Trimming Buffer Underflow Vulnerability (CVE assigned) Local \| 2007-04-01
Med.	PHP array_user_key_compare() Double DTOR Vulnerability (CVE assigned) Local \| 2007-04-01
Med.	PHP 5 Rejected Session Identifier Double Free Vulnerability (CVE assigned) Local \| 2007-03-25
Med.	PHP session_regenerate_id() Double Free Vulnerability (CVE assigned) Local \| 2007-03-25
Med.	PHP compress.bzip2:// URL Wrapper safemode and open_basedir Bypass Vulnerability (CVE assigned) Remote Local \| 2007-03-13

Author: Stefan Esser

Country: de

Reported research: 61

Advisories

High

setattrlist() iOS Kernel Vulnerability Explained

Local | 2017-08-24

High

Apple OS X DYLD_PRINT_TO_FILE Privilege Escalation

Local | 2015-07-24

High

PHP 5.6.3 unserialize() execute arbitrary code (CVE assigned)

Remote | 2014-12-22

High

PHP 5.4.29 phpinfo() SSL Private Keys Leak PoC

Remote | 2014-07-06

High

PHP 5.4.29 phpinfo() Type Confusion Information Leak Vulnerability

Local | 2014-07-03

High

PHP 5.6 heap-based buffer overflow in DNS TXT record parsing (CVE assigned)

Remote | 2014-06-12

High

PHP 5.5.6/5.4.22 openssl_x509_parse() Memory Corruption (CVE assigned)

Remote | 2013-12-16

Med.

PHP 5.3.9/5.4.0RC6 Denial of Service

Remote | 2012-02-05

High

Suhosin PHP Extension Transparent Cookie Encryption Stack Buffer Overflow (CVE assigned)

Remote | 2012-01-20

High

eFront ask_chat.php SQL Injection Vulnerability (CVE assigned)

Remote | 2010-05-23

Med.

PHP ZipArchive::extractTo() Directory Traversal Vulnerability (CVE assigned)

Local | 2008-12-05

Med.

Wordpress user_login Column SQL Truncation Vulnerability (CVE assigned)

Remote | 2008-09-12

High

Joomla Weak Random Password Reset Token Vulnerability (CVE assigned)

Remote | 2008-09-11

Med.

PHP GENERATE_SEED() Weak Random Number Seed Vulnerability (CVE assigned)

Local | 2008-05-09

Med.

PHP session.save_path open_basedir Bypass Vulnerability (CVE assigned)

Local | 2007-04-01

Med.

PHP 4 zip_entry_read() Integer Overflow Vulnerability (CVE assigned)

Local | 2007-04-01

Low

PHP mail() Header Injection Through Subject and To Parameters (CVE assigned)

Remote Local | 2007-04-01

Low

PHP mail() Message ASCIIZ Byte Truncation (CVE assigned)

Remote Local | 2007-04-01

Med.

PHP 4.4.5/4.4.6 session_decode() Double Free Vulnerability (CVE assigned)

Local | 2007-04-01

Med.

PHP _SESSION Deserialization Overwrite Vulnerability (CVE assigned)

Remote Local | 2007-04-01

High

PHP _SESSION unset() Vulnerability (CVE assigned)

Local | 2007-04-01

Med.

PHP 5.2.1 unserialize() Information Leak Vulnerability (CVE assigned)

Local | 2007-04-01

Med.

PHP hash_update_file() Already Freed Resource Access Vulnerability (CVE assigned)

Local | 2007-04-01

High

PHP ext/gd Already Freed Resource Access Vulnerability (CVE assigned)

Local | 2007-04-01

Low

PHP mb_parse_str() register_globals Activation Vulnerability (CVE assigned)

Local | 2007-04-01

High

- Twitter Link
- Website Link
- Zone-H Link
- Description of profile
- email (let us know if you want show public)