Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2007-4782
HistorySep 10, 2007 - 9:17 p.m.

CVE-2007-4782

2007-09-1021:17:00
CWE-94
[email protected]
web.nvd.nist.gov
1

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

9.5 High

AI Score

Confidence

High

0.017 Low

EPSS

Percentile

88.0%

JSON

PHP before 5.2.3 allows context-dependent attackers to cause a denial of service (application crash) via (1) a long string in the pattern parameter to the glob function; or (2) a long string in the string parameter to the fnmatch function, accompanied by a pattern parameter value with undefined characteristics, as demonstrated by a “*[1]e” value. NOTE: this might not be a vulnerability in most web server environments that support multiple threads, unless these issues can be demonstrated for code execution.

Affected configurations

NVD
Node
phpphpRange5.2.3

References

Related

cve 2
veracode 1
cvelist 2
ubuntucve 2
prion 2
f5 2
debiancve 1
nessus 18
nvd 1
oraclelinux 2
redhat 4
openvas 24
centos 2
fedora 1
ubuntu 1
suse 1
gentoo 1
cve
cve
CVE-2007-4782
2007-09-10 21:17:00
CVE-2011-1071
2011-04-08 15:17:27
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:22:29
cvelist
cvelist
CVE-2007-4782
2007-09-10 21:00:00
CVE-2011-1071
2011-04-08 15:00:00
ubuntucve
ubuntucve
CVE-2007-4782
2007-09-10 00:00:00
CVE-2011-1071
2011-04-08 00:00:00
prion
prion
Remote code execution
2007-09-10 21:17:00
Design/Logic Flaw
2011-04-08 15:17:00
f5
f5
K15885 : GNU C Library vulnerability CVE-2011-1071
2015-06-13 00:00:00
SOL15885 - GNU C Library vulnerability CVE-2011-1071
2014-11-27 00:00:00
debiancve
debiancve
CVE-2011-1071
2011-04-08 15:17:27
nessus
nessus
F5 Networks BIG-IP : GNU C Library vulnerability (SOL15885)
2014-11-28 00:00:00
Oracle Linux 4 : php (ELSA-2008-0545)
2013-07-12 00:00:00
CentOS 3 / 5 : php (CESA-2008:0544)
2008-07-17 00:00:00
nvd
nvd
CVE-2011-1071
2011-04-08 15:17:27
oraclelinux
oraclelinux
php security and bug fix update
2008-07-16 00:00:00
php security update
2008-07-16 00:00:00
redhat
redhat
(RHSA-2008:0544) Moderate: php security update
2008-07-16 00:00:00
(RHSA-2008:0582) Moderate: php security update
2008-07-22 00:00:00
(RHSA-2008:0545) Moderate: php security and bug fix update
2008-07-16 00:00:00
openvas
openvas
CentOS Update for php CESA-2008:0544 centos3 i386
2009-02-27 00:00:00
CentOS Update for php CESA-2008:0544 centos3 x86_64
2009-02-27 00:00:00
RedHat Update for php RHSA-2008:0545-01
2009-03-06 00:00:00
centos
centos
php security update
2008-07-16 16:15:51
php security update
2008-07-16 16:10:52
fedora
fedora
[SECURITY] Fedora 8 Update: php-5.2.6-2.fc8
2008-06-20 19:08:56
ubuntu
ubuntu
PHP vulnerabilities
2008-07-23 00:00:00
suse
suse
remote code execution in php4, php5
2008-01-29 14:18:48
gentoo
gentoo
PHP: Multiple vulnerabilities
2007-10-07 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

9.5 High

AI Score

Confidence

High

0.017 Low

EPSS

Percentile

88.0%

JSON
Related for NVD:CVE-2007-4782
cve2veracode1cvelist2ubuntucve2prion2f52debiancve1nessus18nvd1oraclelinux2redhat4openvas24centos2fedora1ubuntu1suse1gentoo1