CVE-2007-2511

Executive Summary

Informations
Name	CVE-2007-2511	First vendor Publication	2007-05-08
Vendor	Cve	Last vendor Modification	2012-10-30

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score	7.2	Attack Range	Local
Cvss Impact Score	10	Attack Complexity	Low
Cvss Expoit Score	3.9	Authentification	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Buffer overflow in the user_filter_factory_create function in PHP before 5.2.2 has unknown impact and local attack vectors.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2511

CPE : Common Platform Enumeration

Type	Description	Count
Application	Php Php cpe:/a:php:php:5.0.0 cpe:/a:php:php:5.0:rc1 cpe:/a:php:php:5.0:rc2 cpe:/a:php:php:5.0:rc3 cpe:/a:php:php:4.4.6 cpe:/a:php:php:4.4.5 cpe:/a:php:php:4.4.4 cpe:/a:php:php:4.4.3 cpe:/a:php:php:4.4.2 cpe:/a:php:php:4.4.1 cpe:/a:php:php:4.4.0 cpe:/a:php:php:4.3.9 cpe:/a:php:php:4.3.8 cpe:/a:php:php:4.3.7 cpe:/a:php:php:4.3.6 cpe:/a:php:php:4.3.5 cpe:/a:php:php:4.3.4 cpe:/a:php:php:4.3.3 cpe:/a:php:php:4.3.2 cpe:/a:php:php:4.3.11 cpe:/a:php:php:4.3.10 cpe:/a:php:php:4.3.1 cpe:/a:php:php:4.3 cpe:/a:php:php:4.2.3 cpe:/a:php:php:4.2.2 cpe:/a:php:php:4.2.1 cpe:/a:php:php:4.2.0 cpe:/a:php:php:4.1.2 cpe:/a:php:php:4.1.1 cpe:/a:php:php:4.1.0 cpe:/a:php:php:4.0.7:rc3 cpe:/a:php:php:4.0.7:rc2 cpe:/a:php:php:4.0.7:rc1 cpe:/a:php:php:4.0.7 cpe:/a:php:php:4.0.6 cpe:/a:php:php:4.0.5 cpe:/a:php:php:4.0.4:patch1 cpe:/a:php:php:4.0.4 cpe:/a:php:php:4.0.3:patch1 cpe:/a:php:php:4.0.3 cpe:/a:php:php:4.0.2 cpe:/a:php:php:4.0.1 cpe:/a:php:php:4.0.1:patch1 cpe:/a:php:php:4.0.1:patch2 cpe:/a:php:php:4.0.0	45

Open Source Vulnerability Database (OSVDB)

id	Description
34676	PHP user_filter_factory_create() Function Overflow

Internal Sources (Detail)

Source	Url
CONFIRM	http://us2.php.net/releases/5_2_2.php http://viewcvs.php.net/viewvc.cgi/php-src/ext/standard/user_filters.c?r1=1.31...
GENTOO	http://security.gentoo.org/glsa/glsa-200705-19.xml
MANDRIVA	http://www.mandriva.com/security/advisories?name=MDKSA-2007:102
OSVDB	http://osvdb.org/34676
SECUNIA	http://secunia.com/advisories/25191 http://secunia.com/advisories/25255 http://secunia.com/advisories/25372 http://secunia.com/advisories/25445 http://secunia.com/advisories/26048
SUSE	http://lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.html
TRUSTIX	http://www.trustix.org/errata/2007/0017/
UBUNTU	http://www.ubuntu.com/usn/usn-462-1

Alert History

If you want to see full details history, please login or register.

Date	Informations
2013-05-11 10:25:12	Multiple Updates

Related	Severity
USN-462-1	(High)

Same Subject	Severity
Login to view 3 more Alert(s)

Copyright Security-Database 2006-2013 - Powered by themself ;) in 0.0684s

Facebook rss twitter linkedin mail