Lucene search
Redhat.comRH:CVE-2007-1883HistoryOct 30, 2015 - 9:25 a.m.
CVE-2007-1883
2015-10-3009:25:16
redhat.com
access.redhat.com
8
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
AI Score
7.2
Confidence
Low
EPSS
0.004
Percentile
73.5%
PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allows context-dependent attackers to read arbitrary memory locations via an interruption that triggers a user space error handler that changes a parameter to an arbitrary pointer, as demonstrated via the iptcembed function, which calls certain convert_to_* functions with its input parameters.
Related
ubuntucve
ubuntucve
CVE-2007-1883
2007-04-06 00:00:00
prion
prion
Design/Logic Flaw
2007-04-06 01:19:00
cvelist
cvelist
CVE-2007-1883
2007-04-06 01:00:00
securityvulns
securityvulns
PHP iptcembed() function information leak
2007-03-31 00:00:00
cve
cve
CVE-2007-1883
2007-04-06 01:19:00
nvd
nvd
CVE-2007-1883
2007-04-06 01:19:00
nessus
nessus
PHP < 4.4.7 / 5.2.2 Multiple Vulnerabilities
2007-05-04 00:00:00
GLSA-200710-02 : PHP: Multiple vulnerabilities
2007-10-09 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2007-10-07 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200710-02 (php)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200710-02 (php)
2008-09-24 00:00:00
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
AI Score
7.2
Confidence
Low
EPSS
0.004
Percentile
73.5%
Related for RH:CVE-2007-1883