PHP  
 PHP_7_2
downloads | QA | documentation | faq | getting help | mailing lists | reporting bugs | php.net sites | links | my php.net 
 

Valgrind Report for sapi/cli/tests/bug70264.phpt ('Bug #70264 (CLI server directory traversal)')

Script

1: <?php
2:
include "php_cli_server.inc";
3:
php_cli_server_start(nullnull);
4: echo 
file_get_contents("http://" PHP_CLI_SERVER_ADDRESS "/..\\CREDITS");
5: echo 
file_get_contents("http://" PHP_CLI_SERVER_ADDRESS "/..%5CCREDITS");
6:
?>
7:

Report

==17555== Jump to the invalid address stated on the next line
==17555==    at 0x4FE: ???
==17555==  Address 0x4fe is not stack'd, malloc'd or (recently) free'd
==17555== 
==17555== 
==17555== Process terminating with default action of signal 11 (SIGSEGV)
==17555==  Bad permissions for mapped region at address 0x4FE
==17555==    at 0x4FE: ???

 

Generated at Sat, 09 Dec 2017 10:21:20 +0000 (2 days ago)

Copyright © 2005-2017 The PHP Group
All rights reserved.