Lucene search

[email protected]CVE-2007-0906

HistoryFeb 13, 2007 - 11:28 p.m.

CVE-2007-0906

2007-02-1323:28:00

CWE-119

[email protected]

web.nvd.nist.gov

php

buffer overflow

denial of service

arbitrary code execution

cve-2007-0906

session

zip

imap

sqlite

stream filters

str_replace

mail

ibase_delete_user

ibase_add_user

ibase_modify_user

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

High

0.043 Low

EPSS

Percentile

92.4%

JSON

Multiple buffer overflows in PHP before 5.2.1 allow attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors in the (1) session, (2) zip, (3) imap, and (4) sqlite extensions; (5) stream filters; and the (6) str_replace, (7) mail, (8) ibase_delete_user, (9) ibase_add_user, and (10) ibase_modify_user functions. NOTE: vector 6 might actually be an integer overflow (CVE-2007-1885). NOTE: as of 20070411, vector (3) might involve the imap_mail_compose function (CVE-2007-1825).

Affected configurations

NVD

Node

phpphpMatch3.0

phpphpMatch3.0.1

phpphpMatch3.0.2

phpphpMatch3.0.3

phpphpMatch3.0.4

phpphpMatch3.0.5

phpphpMatch3.0.6

phpphpMatch3.0.7

phpphpMatch3.0.8

phpphpMatch3.0.9

phpphpMatch3.0.10

phpphpMatch3.0.11

phpphpMatch3.0.12

phpphpMatch3.0.13

phpphpMatch3.0.14

phpphpMatch3.0.15

phpphpMatch3.0.16

phpphpMatch3.0.17

phpphpMatch3.0.18

phpphpMatch4.0

phpphpMatch4.0.1

phpphpMatch4.0.1patch1

phpphpMatch4.0.1patch2

phpphpMatch4.0.2

phpphpMatch4.0.3

phpphpMatch4.0.3patch1

phpphpMatch4.0.4

phpphpMatch4.0.5

phpphpMatch4.0.6

phpphpMatch4.0.7

phpphpMatch4.0.7rc1

phpphpMatch4.0.7rc2

phpphpMatch4.0.7rc3

phpphpMatch4.1.0

phpphpMatch4.1.1

phpphpMatch4.1.2

phpphpMatch4.2dev

phpphpMatch4.2.0

phpphpMatch4.2.1

phpphpMatch4.2.2

phpphpMatch4.2.3

phpphpMatch4.3.0

phpphpMatch4.3.1

phpphpMatch4.3.2

phpphpMatch4.3.3

phpphpMatch4.3.4

phpphpMatch4.3.5

phpphpMatch4.3.6

phpphpMatch4.3.7

phpphpMatch4.3.8

phpphpMatch4.3.9

phpphpMatch4.3.10

phpphpMatch4.3.11

phpphpMatch4.4.0

phpphpMatch4.4.1

phpphpMatch4.4.2

phpphpMatch4.4.3

phpphpMatch4.4.4

phpphpMatch5.0rc1

phpphpMatch5.0rc2

phpphpMatch5.0rc3

phpphpMatch5.0.0

phpphpMatch5.0.1

phpphpMatch5.0.2

phpphpMatch5.0.3

phpphpMatch5.0.4

phpphpMatch5.0.5

phpphpMatch5.1.0

phpphpMatch5.1.1

phpphpMatch5.1.2

phpphpMatch5.1.3

phpphpMatch5.1.4

phpphpMatch5.1.5

phpphpMatch5.1.6

phpphpMatch5.2.0

Node

trustixsecure_linuxMatch2.2

trustixsecure_linuxMatch3.0

CPENameOperatorVersion
php:phpphpeq3.0
php:phpphpeq3.0.1
php:phpphpeq3.0.2
php:phpphpeq3.0.3
php:phpphpeq3.0.4
php:phpphpeq3.0.5
php:phpphpeq3.0.6
php:phpphpeq3.0.7
php:phpphpeq3.0.8
php:phpphpeq3.0.9

CPE	Name	Operator	Version
php:php	php	eq	3.0
php:php	php	eq	3.0.1
php:php	php	eq	3.0.2
php:php	php	eq	3.0.3
php:php	php	eq	3.0.4
php:php	php	eq	3.0.5
php:php	php	eq	3.0.6
php:php	php	eq	3.0.7
php:php	php	eq	3.0.8
php:php	php	eq	3.0.9

Rows per page:

1-10 of 671

References

ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc

lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.html

lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html

osvdb.org/34706

osvdb.org/34707

osvdb.org/34708

osvdb.org/34709

osvdb.org/34710

osvdb.org/34711

osvdb.org/34712

osvdb.org/34713

osvdb.org/34714

osvdb.org/34715

rhn.redhat.com/errata/RHSA-2007-0089.html

secunia.com/advisories/24089

secunia.com/advisories/24195

secunia.com/advisories/24217

secunia.com/advisories/24236

secunia.com/advisories/24248

secunia.com/advisories/24284

secunia.com/advisories/24295

secunia.com/advisories/24322

secunia.com/advisories/24419

secunia.com/advisories/24421

secunia.com/advisories/24432

secunia.com/advisories/24514

secunia.com/advisories/24606

secunia.com/advisories/24642

secunia.com/advisories/24945

secunia.com/advisories/26048

security.gentoo.org/glsa/glsa-200703-21.xml

support.avaya.com/elmodocs2/security/ASA-2007-101.htm

support.avaya.com/elmodocs2/security/ASA-2007-136.htm

www.mandriva.com/security/advisories?name=MDKSA-2007:048

www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html

www.osvdb.org/32776

www.php.net/ChangeLog-5.php#5.2.1

www.php.net/releases/5_2_1.php

www.redhat.com/support/errata/RHSA-2007-0076.html

www.redhat.com/support/errata/RHSA-2007-0081.html

www.redhat.com/support/errata/RHSA-2007-0082.html

www.redhat.com/support/errata/RHSA-2007-0088.html

www.securityfocus.com/archive/1/461462/100/0/threaded

www.securityfocus.com/archive/1/466166/100/0/threaded

www.securityfocus.com/bid/22496

www.securitytracker.com/id?1017671

www.trustix.org/errata/2007/0009/

www.ubuntu.com/usn/usn-424-1

www.ubuntu.com/usn/usn-424-2

www.us.debian.org/security/2007/dsa-1264

www.vupen.com/english/advisories/2007/0546

issues.rpath.com/browse/RPL-1088

issues.rpath.com/browse/RPL-1268

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8992

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

High

0.043 Low

EPSS

Percentile

92.4%

JSON

Related for CVE-2007-0906

prion3 ubuntucve3 cvelist3 nvd3 cve2 redhatcve3 veracode1 redhat4 centos2 securityvulns3 openvas33 oraclelinux2 nessus21 osv1 slackware1 fedora4 ubuntu2 freebsd1 debian1 suse2 gentoo1