Lucene search

K

[email protected]NVD:CVE-2007-4661

HistorySep 04, 2007 - 10:17 p.m.

CVE-2007-4661

2007-09-0422:17:00

CWE-399

CWE-119

[email protected]

web.nvd.nist.gov

1

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

High

0.258 Low

EPSS

Percentile

96.7%

The chunk_split function in string.c in PHP 5.2.3 does not properly calculate the needed buffer size due to precision loss when performing integer arithmetic with floating point numbers, which has unknown attack vectors and impact, possibly resulting in a heap-based buffer overflow. NOTE: this is due to an incomplete fix for CVE-2007-2872.

Affected configurations

NVD

Node

phpphpMatch5.2.3

References

cvs.php.net/viewvc.cgi/php-src/ext/standard/string.c?r1=1.445.2.14.2.58&r2=1.445.2.14.2.59

lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.html

secunia.com/advisories/26642

secunia.com/advisories/26838

secunia.com/advisories/27102

secunia.com/advisories/27864

secunia.com/advisories/28658

www.gentoo.org/security/en/glsa/glsa-200710-02.xml

www.php.net/ChangeLog-5.php#5.2.4

www.php.net/releases/5_2_4.php

www.ubuntu.com/usn/usn-549-2

issues.rpath.com/browse/RPL-1702

launchpad.net/bugs/173043

usn.ubuntu.com/549-1/

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

High

0.258 Low

EPSS

Percentile

96.7%

Related for NVD:CVE-2007-4661

ubuntucve2 cvelist2 cve2 prion2 veracode2 nvd1 securityvulns2 nessus27 openvas34 ubuntu2 slackware1 centos3 redhat5 freebsd1 suse2 oraclelinux2 fedora1 gentoo1