CVE-2007-4727

🗓️ 12 Sep 2007 19:00:00Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 5 Media mentions👁 101 Views

Buffer overflow in mod_fastcgi extension in lighttpd before 1.4.18 allows remote attackers to execute arbitrary code via HTTP request

Reporter	Title	Published	Views	Family All 35
Tenable Nessus	Lighttpd < 1.4.18 mod_fastcgi HTTP Request Header Overflow	10 Sep 200700:00	–	nessus
Tenable Nessus	Debian DSA-1362-2 : lighttpd - several vulnerabilities	3 Sep 200700:00	–	nessus
Tenable Nessus	Fedora 7 : lighttpd-1.4.18-1.fc7 (2007-2132)	6 Nov 200700:00	–	nessus
Tenable Nessus	FreeBSD : lighttpd -- FastCGI header overrun in mod_fastcgi (4b673ae7-5f9a-11dc-84dd-000102cc8983)	14 Sep 200700:00	–	nessus
Tenable Nessus	GLSA-200709-16 : Lighttpd: Buffer overflow	3 Oct 200700:00	–	nessus
Tenable Nessus	GLSA-200710-02 : PHP: Multiple vulnerabilities	9 Oct 200700:00	–	nessus
Tenable Nessus	lighttpd mod_fastcgi HTTP Request Header Remote Overflow	17 Sep 200700:00	–	nessus
Tenable Nessus	openSUSE 10 Security Update : lighttpd (lighttpd-4532)	17 Oct 200700:00	–	nessus
FreeBSD	lighttpd -- FastCGI header overrun in mod_fastcgi	9 Sep 200700:00	–	freebsd
Check Point Advisories	Lighttpd mod_fastcgi Extension CGI Variable Overwriting (CVE-2007-4727)	31 Jan 201000:00	–	checkpoint_advisories

NVD

Node

Source	Link
secunia	www.secunia.com/advisories/26997
secweb	www.secweb.se/en/advisories/lighttpd-fastcgi-remote-vulnerability/
securityfocus	www.securityfocus.com/archive/1/479763/100/0/threaded
securityreason	www.securityreason.com/securityalert/3127
secunia	www.secunia.com/advisories/27229
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
secunia	www.secunia.com/advisories/26794
securityfocus	www.securityfocus.com/bid/25622
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/36526
secunia	www.secunia.com/advisories/26824

23 Apr 2026 00:35Current

7.5High risk

Vulners AI Score7.5

CVSS 26.8

EPSS0.1873