CVE-2007-2511
6.5 Medium
AI Score
Confidence
Low
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
32.2%
Buffer overflow in the user_filter_factory_create function in PHP before 5.2.2 has unknown impact and local attack vectors.
References
lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.html
osvdb.org/34676
secunia.com/advisories/25191
secunia.com/advisories/25255
secunia.com/advisories/25372
secunia.com/advisories/25445
secunia.com/advisories/26048
security.gentoo.org/glsa/glsa-200705-19.xml
us2.php.net/releases/5_2_2.php
viewcvs.php.net/viewvc.cgi/php-src/ext/standard/user_filters.c?r1=1.31.2.4.2.5&r2=1.31.2.4.2.6
www.mandriva.com/security/advisories?name=MDKSA-2007:102
www.trustix.org/errata/2007/0017/
www.ubuntu.com/usn/usn-462-1
Related
6.5 Medium
AI Score
Confidence
Low
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
32.2%