Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4657

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-4657
Last Modified 07 Mar 2011 09:58:57
Published 04 Sep 2007 06:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4657

Summary

Multiple integer overflows in PHP 4 before 4.4.8, and PHP 5 before 5.2.4, allow remote attackers to obtain sensitive information (memory contents) or cause a denial of service (thread crash) via a large len value to the (1) strspn or (2) strcspn function, which triggers an out-of-bounds read. NOTE: this affects different product versions than CVE-2007-3996.

Vulnerable Systems

Application

  • Php 4.4.7

  • Php 5.2.3


References

CONFIRM - http://www.php.net/ChangeLog-5.php#5.2.4

MISC - http://secweb.se/en/advisories/php-strcspn-information-leak-vulnerability/

SECUNIA - 26642

VUPEN - ADV-2008-0059

VUPEN - ADV-2007-3023

CONFIRM - http://www.php.net/releases/5_2_4.php

CONFIRM - https://launchpad.net/bugs/173043

CONFIRM - https://issues.rpath.com/browse/RPL-1702

CONFIRM - https://issues.rpath.com/browse/RPL-1693

XF - php-strcspn-strspn-unspecified(39399)

XF - php-strcspn-overflow(36388)

UBUNTU - USN-549-1

UBUNTU - USN-549-2

TRUSTIX - 2007-0026

CONFIRM - http://www.php.net/releases/4_4_8.php

CONFIRM - http://www.php.net/ChangeLog-4.php

GENTOO - GLSA-200710-02

DEBIAN - DSA-1578

DEBIAN - DSA-1444

SLACKWARE - SSA:2008-045-03

SECUNIA - 30288

SECUNIA - 28936

SECUNIA - 28318

SECUNIA - 28249

SECUNIA - 27864

SECUNIA - 27377

SECUNIA - 27102

SECUNIA - 26838

SECUNIA - 26822


Last Updated: 27 May 2016 10:45:56