CVE-2007-1890 Information

Description

Integer overflow in the msg_receive function in PHP 4 before 4.4.5 and PHP 5 before 5.2.1 on FreeBSD and possibly other platforms allows context-dependent attackers to execute arbitrary code via certain maxsize values as demonstrated by 0xffffffff.

Reference

http://www.php-security.org/MOPB/MOPB-43-2007.html http://www.securityfocus.com/bid/23236 https://exchange.xforce.ibmcloud.com/vulnerabilities/33775