Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0717


Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0717
Last Modified 05 Sep 2008 04:28:46
Published 26 Jul 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



PHP 4.2.0 and 4.2.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an HTTP POST request with certain arguments in a multipart/form-data form, which generates an error condition that is not properly handled and causes improper memory to be freed.

Vulnerable Systems


  • Php 4.2.0

  • Php 4.2.1


CERT-VN - VU#929115

CERT - CA-2002-21

BUGTRAQ - 20020722 Advisory 02/2002: PHP remote vulnerability

BUGTRAQ - 20020722 PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and 4.2.1

XF - php-multipart-handler-bo(9635)

Last Updated: 27 May 2016 10:37:02