7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.025 Low
EPSS
Percentile
90.0%
CentOS Errata and Security Advisory CESA-2007:0348
PHP is an HTML-embedded scripting language commonly used with the Apache
HTTP Web server.
A heap buffer overflow flaw was found in the PHP ‘xmlrpc’ extension. A
PHP script which implements an XML-RPC server using this extension
could allow a remote attacker to execute arbitrary code as the ‘apache’
user. Note that this flaw does not affect PHP applications using the
pure-PHP XML_RPC class provided in /usr/share/pear. (CVE-2007-1864)
A flaw was found in the PHP ‘ftp’ extension. If a PHP script used this
extension to provide access to a private FTP server, and passed untrusted
script input directly to any function provided by this extension, a remote
attacker would be able to send arbitrary FTP commands to the server.
(CVE-2007-2509)
A buffer overflow flaw was found in the PHP ‘soap’ extension, regarding the
handling of an HTTP redirect response when using the SOAP client provided
by this extension with an untrusted SOAP server. No mechanism to trigger
this flaw remotely is known. (CVE-2007-2510)
Users of PHP should upgrade to these updated packages which contain
backported patches to correct these issues.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2007-May/075904.html
https://lists.centos.org/pipermail/centos-announce/2007-May/075905.html
Affected packages:
php
php-bcmath
php-cli
php-common
php-dba
php-devel
php-gd
php-imap
php-ldap
php-mbstring
php-mysql
php-ncurses
php-odbc
php-pdo
php-pgsql
php-snmp
php-soap
php-xml
php-xmlrpc
Upstream details at:
https://access.redhat.com/errata/RHSA-2007:0348
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 5 | i386 | php | < 5.1.6-12.el5 | php-5.1.6-12.el5.i386.rpm |
CentOS | 5 | i386 | php-bcmath | < 5.1.6-12.el5 | php-bcmath-5.1.6-12.el5.i386.rpm |
CentOS | 5 | i386 | php-cli | < 5.1.6-12.el5 | php-cli-5.1.6-12.el5.i386.rpm |
CentOS | 5 | i386 | php-common | < 5.1.6-12.el5 | php-common-5.1.6-12.el5.i386.rpm |
CentOS | 5 | i386 | php-dba | < 5.1.6-12.el5 | php-dba-5.1.6-12.el5.i386.rpm |
CentOS | 5 | i386 | php-devel | < 5.1.6-12.el5 | php-devel-5.1.6-12.el5.i386.rpm |
CentOS | 5 | i386 | php-gd | < 5.1.6-12.el5 | php-gd-5.1.6-12.el5.i386.rpm |
CentOS | 5 | i386 | php-imap | < 5.1.6-12.el5 | php-imap-5.1.6-12.el5.i386.rpm |
CentOS | 5 | i386 | php-ldap | < 5.1.6-12.el5 | php-ldap-5.1.6-12.el5.i386.rpm |
CentOS | 5 | i386 | php-mbstring | < 5.1.6-12.el5 | php-mbstring-5.1.6-12.el5.i386.rpm |