CVE-2007-0906 | Mend Vulnerability Database

Vulnerability DatabaseCVE-2007-0906

CVE-2007-0906

February 13, 2007

Multiple buffer overflows in PHP before 5.2.1 allow attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors in the (1) session, (2) zip, (3) imap, and (4) sqlite extensions; (5) stream filters; and the (6) str_replace, (7) mail, (8) ibase_delete_user, (9) ibase_add_user, and (10) ibase_modify_user functions. NOTE: vector 6 might actually be an integer overflow (CVE-2007-1885). NOTE: as of 20070411, vector (3) might involve the imap_mail_compose function (CVE-2007-1825).

Related Resources (56)

http://secunia.com/advisories/24514

http://osvdb.org/34714

http://support.avaya.com/elmodocs2/security/ASA-2007-136.htm

http://secunia.com/advisories/24432

http://www.redhat.com/support/errata/RHSA-2007-0081.html

http://secunia.com/advisories/24421

http://osvdb.org/34709

http://secunia.com/advisories/24284

http://rhn.redhat.com/errata/RHSA-2007-0089.html

http://www.trustix.org/errata/2007/0009/

http://security.gentoo.org/glsa/glsa-200703-21.xml

http://www.php.net/releases/5_2_1.php

http://lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.html

http://www.redhat.com/support/errata/RHSA-2007-0076.html

http://secunia.com/advisories/24248

http://secunia.com/advisories/24606

http://osvdb.org/34707

http://www.ubuntu.com/usn/usn-424-1

http://osvdb.org/34711

http://osvdb.org/34708

http://secunia.com/advisories/24945

http://secunia.com/advisories/24419

http://secunia.com/advisories/24322

https://people.canonical.com/~ubuntu-security/cve/CVE-2007-0906

http://osvdb.org/34712

http://secunia.com/advisories/24195

http://www.securityfocus.com/archive/1/466166/100/0/threaded

http://www.securitytracker.com/id?1017671

http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html

https://issues.rpath.com/browse/RPL-1268

http://secunia.com/advisories/24236

http://secunia.com/advisories/26048

http://osvdb.org/34715

http://osvdb.org/34713

http://support.avaya.com/elmodocs2/security/ASA-2007-101.htm

https://access.redhat.com/security/cve/CVE-2007-0906

http://www.us.debian.org/security/2007/dsa-1264

http://www.mandriva.com/security/advisories?name=MDKSA-2007:048

http://secunia.com/advisories/24089

http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html

http://www.securityfocus.com/archive/1/461462/100/0/threaded

http://secunia.com/advisories/24217

http://secunia.com/advisories/24295

http://osvdb.org/34706

https://issues.rpath.com/browse/RPL-1088

http://www.php.net/ChangeLog-5.php#5.2.1

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8992

http://www.vupen.com/english/advisories/2007/0546

http://osvdb.org/34710

ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc

http://www.redhat.com/support/errata/RHSA-2007-0088.html

http://www.osvdb.org/32776

http://secunia.com/advisories/24642

http://www.redhat.com/support/errata/RHSA-2007-0082.html

http://www.securityfocus.com/bid/22496

http://www.ubuntu.com/usn/usn-424-2

Do you need more information?

CVSS v4

Base Score:

6.9

Attack Vector

NETWORK

Attack Complexity

LOW

Attack Requirements

NONE

Privileges Required

NONE

User Interaction

NONE

Vulnerable System Confidentiality

LOW

Vulnerable System Integrity

LOW

Vulnerable System Availability

LOW

Subsequent System Confidentiality

NONE

Subsequent System Integrity

NONE

Subsequent System Availability

NONE

CVSS v3

Base Score:

7.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

LOW

Availability

LOW

CVSS v2

Base Score:

7.5

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

Weakness Type (CWE)

Improper Restriction of Operations within the Bounds of a Memory Buffer

EPSS

Base Score:

2.17