6.7 Medium
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.037 Low
EPSS
Percentile
91.6%
The import_request_variables function in PHP 4.0.7 through 4.4.6, and 5.x before 5.2.2, when called without a prefix, does not prevent the (1) GET, (2) POST, (3) COOKIE, (4) FILES, (5) SERVER, (6) SESSION, and other superglobals from being overwritten, which allows remote attackers to spoof source IP address and Referer data, and have other unspecified impact. NOTE: it could be argued that this is a design limitation of PHP and that only the misuse of this feature, i.e. implementation bugs in applications, should be included in CVE. However, it has been fixed by the vendor.
lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.html
secunia.com/advisories/26048
securityreason.com/securityalert/2406
us2.php.net/releases/4_4_7.php
us2.php.net/releases/5_2_2.php
www.securityfocus.com/archive/1/462263/100/0/threaded
www.securityfocus.com/archive/1/462457/100/0/threaded
www.securityfocus.com/archive/1/462658/100/0/threaded
www.securityfocus.com/archive/1/462800/100/0/threaded
www.securityfocus.com/bid/22886