Lucene search

[email protected]NVD:CVE-2007-0907

HistoryFeb 13, 2007 - 11:28 p.m.

CVE-2007-0907

2007-02-1323:28:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.2

Confidence

Low

EPSS

0.042

Percentile

92.3%

JSON

Buffer underflow in PHP before 5.2.1 allows attackers to cause a denial of service via unspecified vectors involving the sapi_header_op function.

Affected configurations

NVD

Node

phpphpMatch3.0

phpphpMatch3.0.1

phpphpMatch3.0.2

phpphpMatch3.0.3

phpphpMatch3.0.4

phpphpMatch3.0.5

phpphpMatch3.0.6

phpphpMatch3.0.7

phpphpMatch3.0.8

phpphpMatch3.0.9

phpphpMatch3.0.10

phpphpMatch3.0.11

phpphpMatch3.0.12

phpphpMatch3.0.13

phpphpMatch3.0.14

phpphpMatch3.0.15

phpphpMatch3.0.16

phpphpMatch3.0.17

phpphpMatch3.0.18

phpphpMatch4.0

phpphpMatch4.0.1

phpphpMatch4.0.1patch1

phpphpMatch4.0.1patch2

phpphpMatch4.0.2

phpphpMatch4.0.3

phpphpMatch4.0.3patch1

phpphpMatch4.0.4

phpphpMatch4.0.5

phpphpMatch4.0.6

phpphpMatch4.0.7

phpphpMatch4.0.7rc1

phpphpMatch4.0.7rc2

phpphpMatch4.0.7rc3

phpphpMatch4.1.0

phpphpMatch4.1.1

phpphpMatch4.1.2

phpphpMatch4.2dev

phpphpMatch4.2.0

phpphpMatch4.2.1

phpphpMatch4.2.2

phpphpMatch4.2.3

phpphpMatch4.3.0

phpphpMatch4.3.1

phpphpMatch4.3.2

phpphpMatch4.3.3

phpphpMatch4.3.4

phpphpMatch4.3.5

phpphpMatch4.3.6

phpphpMatch4.3.7

phpphpMatch4.3.8

phpphpMatch4.3.9

phpphpMatch4.3.10

phpphpMatch4.3.11

phpphpMatch4.4.0

phpphpMatch4.4.1

phpphpMatch4.4.2

phpphpMatch4.4.3

phpphpMatch4.4.4

phpphpMatch5.0rc1

phpphpMatch5.0rc2

phpphpMatch5.0rc3

phpphpMatch5.0.0

phpphpMatch5.0.1

phpphpMatch5.0.2

phpphpMatch5.0.3

phpphpMatch5.0.4

phpphpMatch5.0.5

phpphpMatch5.1.0

phpphpMatch5.1.1

phpphpMatch5.1.2

phpphpMatch5.1.3

phpphpMatch5.1.4

phpphpMatch5.1.5

phpphpMatch5.1.6

phpphpMatch5.2.0

Node

trustixsecure_linuxMatch2.2

trustixsecure_linuxMatch3.0

References

ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc

lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html

osvdb.org/32767

rhn.redhat.com/errata/RHSA-2007-0089.html

secunia.com/advisories/24089

secunia.com/advisories/24195

secunia.com/advisories/24217

secunia.com/advisories/24236

secunia.com/advisories/24248

secunia.com/advisories/24284

secunia.com/advisories/24295

secunia.com/advisories/24322

secunia.com/advisories/24419

secunia.com/advisories/24421

secunia.com/advisories/24432

secunia.com/advisories/24514

secunia.com/advisories/24606

secunia.com/advisories/24642

security.gentoo.org/glsa/glsa-200703-21.xml

support.avaya.com/elmodocs2/security/ASA-2007-101.htm

support.avaya.com/elmodocs2/security/ASA-2007-136.htm

www.mandriva.com/security/advisories?name=MDKSA-2007:048

www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html

www.php.net/ChangeLog-5.php#5.2.1

www.php.net/releases/5_2_1.php

www.redhat.com/support/errata/RHSA-2007-0076.html

www.redhat.com/support/errata/RHSA-2007-0081.html

www.redhat.com/support/errata/RHSA-2007-0082.html

www.redhat.com/support/errata/RHSA-2007-0088.html

www.securityfocus.com/archive/1/461462/100/0/threaded

www.securityfocus.com/bid/22496

www.securitytracker.com/id?1017671

www.trustix.org/errata/2007/0009/

www.ubuntu.com/usn/usn-424-1

www.ubuntu.com/usn/usn-424-2

www.us.debian.org/security/2007/dsa-1264

www.vupen.com/english/advisories/2007/0546

issues.rpath.com/browse/RPL-1088

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11321

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.2

Confidence

Low

EPSS

0.042

Percentile

92.3%

JSON

Related for NVD:CVE-2007-0907

cve1 ubuntucve1 prion1 cvelist1 veracode1 redhatcve1 securityvulns1 fedora4 openvas31 nessus18 ubuntu2 slackware1 osv1 freebsd1 debian1 suse1 centos2 redhat4 oraclelinux2 gentoo1