Critical severity9.8NVD Advisory· Published Mar 15, 2017· Updated May 13, 2026

CVE-2017-5358

Description

Stack-based buffer overflows in php_Easycom5_3_0.dll in EasyCom for PHP 4.0.0.29 allows remote attackers to execute arbitrary code via the server argument to the (1) i5_connect, (2) i5_pconnect, or (3) i5_private_connect API function.

Affected products

Easycom Aura/Easycom For Php
cpe:2.3:a:easycom-aura:easycom_for_php:4.0.0.29:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

hyp3rlinx.altervista.org/advisories/EASYCOM-PHP-API-BUFFER-OVERFLOW.txtnvdExploitThird Party Advisory
packetstormsecurity.com/files/141299/EasyCom-AS400-PHP-API-Buffer-Overflow.htmlnvdExploitThird Party AdvisoryVDB Entry
www.exploit-db.com/exploits/41425/nvdExploitThird Party AdvisoryVDB Entry
seclists.org/fulldisclosure/2017/Feb/60nvdThird Party AdvisoryVDB Entry
www.securityfocus.com/bid/96419nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.028
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000