Lucene search
HistoryMar 24, 2007 - 12:19 a.m.
CVE-2007-1649
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
AI Score
9.3
Confidence
High
EPSS
0.008
Percentile
81.7%
PHP 5.2.1 allows context-dependent attackers to read portions of heap memory by executing certain scripts with a serialized data input string beginning with S:, which does not properly track the number of input bytes being processed.
Affected configurations
Node
phpphpMatch5.2.1
Related
redhatcve
redhatcve
CVE-2007-1649
2015-10-30 10:22:12
prion
prion
Input validation
2007-03-24 00:19:00
exploitdb
exploitdb
PHP 5.2.1 - 'Unserialize()' Local Information Leak
2007-03-23 00:00:00
cve
cve
CVE-2007-1649
2007-03-24 00:19:00
openvas
openvas
PHP < 5.2.2 Security Vulnerability
2012-06-21 00:00:00
PHP < 5.2.2 'CVE-2007-1649' Vulnerability
2020-08-17 00:00:00
Mandriva Update for php MDVSA-2008:126 (php)
2009-04-09 00:00:00
securityvulns
securityvulns
PHP unserialize() function information leak
2007-03-25 00:00:00
ubuntucve
ubuntucve
CVE-2007-1649
2007-03-24 00:00:00
cvelist
cvelist
CVE-2007-1649
2007-03-24 00:00:00
nessus
nessus
PHP 5.x < 5.2.2 Multiple vulnerabilities
2012-01-11 00:00:00
Mandriva Linux Security Advisory : php (MDVSA-2008:126)
2009-04-23 00:00:00
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
AI Score
9.3
Confidence
High
EPSS
0.008
Percentile
81.7%
Related for NVD:CVE-2007-1649