Lucene search
HistoryMay 24, 2007 - 6:30 p.m.
CVE-2007-2844
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7
Confidence
High
EPSS
0.03
Percentile
91.0%
PHP 4.x and 5.x before 5.2.1, when running on multi-threaded systems, does not ensure thread safety for libc crypt function calls using protection schemes such as a mutex, which creates race conditions that allow remote attackers to overwrite internal program memory and gain system access.
Affected configurations
Node
phpphpMatch4.0
ORphpphpMatch4.0beta_4_patch1
ORphpphpMatch4.0beta1
ORphpphpMatch4.0beta2
ORphpphpMatch4.0beta3
ORphpphpMatch4.0beta4
ORphpphpMatch4.0rc1
ORphpphpMatch4.0rc2
ORphpphpMatch4.0.0
ORphpphpMatch4.0.1
ORphpphpMatch4.0.1patch1
ORphpphpMatch4.0.1patch2
ORphpphpMatch4.0.2
ORphpphpMatch4.0.3
ORphpphpMatch4.0.3patch1
ORphpphpMatch4.0.4
ORphpphpMatch4.0.4patch1
ORphpphpMatch4.0.5
ORphpphpMatch4.0.6
ORphpphpMatch4.0.7
ORphpphpMatch4.0.7rc1
ORphpphpMatch4.0.7rc2
ORphpphpMatch4.0.7rc3
ORphpphpMatch4.1.0
ORphpphpMatch4.1.1
ORphpphpMatch4.1.2
ORphpphpMatch4.2.0
ORphpphpMatch4.2.1
ORphpphpMatch4.2.2
ORphpphpMatch4.2.3
ORphpphpMatch4.3.0
ORphpphpMatch4.3.1
ORphpphpMatch4.3.2
ORphpphpMatch4.3.3
ORphpphpMatch4.3.4
ORphpphpMatch4.3.5
ORphpphpMatch4.3.6
ORphpphpMatch4.3.7
ORphpphpMatch4.3.8
ORphpphpMatch4.3.9
ORphpphpMatch4.3.10
ORphpphpMatch4.3.11
ORphpphpMatch4.4.0
ORphpphpMatch4.4.1
ORphpphpMatch4.4.2
ORphpphpMatch4.4.3
ORphpphpMatch4.4.4
ORphpphpMatch4.4.5
ORphpphpMatch4.4.6
ORphpphpMatch5.0rc1
ORphpphpMatch5.0rc2
ORphpphpMatch5.0rc3
ORphpphpMatch5.0.0
ORphpphpMatch5.0.0beta1
ORphpphpMatch5.0.0beta2
ORphpphpMatch5.0.0beta3
ORphpphpMatch5.0.0beta4
ORphpphpMatch5.0.0rc1
ORphpphpMatch5.0.0rc2
ORphpphpMatch5.0.0rc3
ORphpphpMatch5.0.1
ORphpphpMatch5.0.2
ORphpphpMatch5.0.3
ORphpphpMatch5.0.4
ORphpphpMatch5.0.5
ORphpphpMatch5.1.0
ORphpphpMatch5.1.1
ORphpphpMatch5.1.2
ORphpphpMatch5.1.3
ORphpphpMatch5.1.4
ORphpphpMatch5.1.5
ORphpphpMatch5.1.6
ORphpphpMatch5.2.0
Related
prion
prion
Race condition
2007-05-24 18:30:00
ubuntucve
ubuntucve
CVE-2007-2844
2007-05-24 00:00:00
cve
cve
CVE-2007-2844
2007-05-24 18:30:00
redhatcve
redhatcve
CVE-2007-2844
2015-10-30 09:26:48
cvelist
cvelist
CVE-2007-2844
2007-05-24 18:00:00
nessus
nessus
PHP 5.x < 5.2 Multiple Vulnerabilities
2008-03-25 00:00:00
openvas
openvas
PHP < 5.2.0 Multiple Vulnerabilities
2020-08-17 00:00:00
PHP < 5.2.0 Multiple Vulnerabilities
2012-06-21 00:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7
Confidence
High
EPSS
0.03
Percentile
91.0%
Related for NVD:CVE-2007-2844