Unrated severityNVD Advisory· Published Jan 6, 2006· Updated Apr 16, 2026

CVE-2006-0097

Description

Stack-based buffer overflow in the create_named_pipe function in libmysql.c in PHP 4.3.10 and 4.4.x before 4.4.3 for Windows allows attackers to execute arbitrary code via a long (1) arg_host or (2) arg_unix_socket argument, as demonstrated by a long named pipe variable in the host argument to the mysql_connect function.

Affected products

PHP/PHP4 versions
cpe:2.3:a:php:php:4.3.10:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:php:php:4.3.10:*:*:*:*:*:*:*
- cpe:2.3:a:php:php:4.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:php:php:4.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:php:php:4.4.2:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.grok.org.uk/pipermail/full-disclosure/2006-January/041013.htmlnvdExploitVendor Advisory
www.securityfocus.com/bid/16145nvdExploit
secunia.com/advisories/18275nvdVendor Advisory
www.vupen.com/english/advisories/2006/0046nvdVendor Advisory
archives.neohapsis.com/archives/fulldisclosure/2006-01/0274.htmlnvd
www.osvdb.org/22232nvd
www.php.net/ChangeLog-4.phpnvd
www.securityfocus.com/archive/1/420986/100/0/threadednvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.010
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000