Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 6:12 a.m.2 views

SUSE CVE-2007-2728

The soap extension in PHP calls phprandr with an uninitialized seed variable, which has unknown impact and attack vectors, a related issue to the mcryptcreateiv issue covered by CVE-2007-2727. Note: The PHP team argue that this is not a valid security issue...

5CVSS7AI score0.02424EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.28 views

Ubuntu: Security Advisory (USN-485-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.02922EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2007/12/13 12:0 a.m.33 views

SuSE 10 Security Update : PHP5 (ZYPP Patch Number 3980)

This update fixes multiple bugs in php : - predictable generaton of an initialization vector IV in the mcrypt extension - additional cookie attributes could be injected via a session id - specially crafted files could cause integer overflows in gd and leverage them to at least crash gd based...

5CVSS6.5AI score0.07919EPSS
Exploits2References18
Tenable Nessus
Tenable Nessus
added 2007/10/17 12:0 a.m.39 views

openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-3979)

This update fixes multiple bugs in php : - predictable generaton of an initialization vector IV in the mcrypt extension - additional cookie attributes could be injected via a session id - specially crafted files could cause integer overflows in gd and leverage them to at least crash gd based...

5CVSS6.5AI score0.07919EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2007/10/17 12:0 a.m.43 views

openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-3978)

This update fixes multiple bugs in php : - predictable generaton of an initialization vector IV in the mcrypt extension - additional cookie attributes could be injected via a session id - specially crafted files could cause integer overflows in gd and leverage them to at least crash gd based...

5CVSS6.5AI score0.07919EPSS
Exploits2References8
UbuntuCve
UbuntuCve
added 2007/05/16 10:30 p.m.27 views

CVE-2007-2728

The soap extension in PHP calls phprandr with an uninitialized seed variable, which has unknown impact and attack vectors, a related issue to the mcryptcreateiv issue covered by CVE-2007-2727. Note: The PHP team argue that this is not a valid security issue...

5CVSS6AI score0.02424EPSS
Exploits0References2
CVE
CVE
added 2007/05/16 10:0 p.m.92 views

CVE-2007-2728

CVE-2007-2728 concerns the PHP soap extension calling php_rand_r with an uninitialized seed variable. The impact and attack vectors are not clearly defined in the provided documents; it is noted as related to CVE-2007-2727 and the PHP team argued it is not a valid security issue. No exploitation ...

5CVSS6.3AI score0.02424EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder