Lucene search
Ubuntu.comUB:CVE-2007-1376HistoryMar 10, 2007 - 12:00 a.m.
CVE-2007-1376
2007-03-1000:00:00
ubuntu.com
ubuntu.com
10
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.049 Low
EPSS
Percentile
92.7%
The shmop functions in PHP before 4.4.5, and before 5.2.1 in the 5.x
series, do not verify that their arguments correspond to a shmop resource,
which allows context-dependent attackers to read and write arbitrary memory
locations via arguments associated with an inappropriate resource, as
demonstrated by a GD Image resource.
Related
prion
prion
Design/Logic Flaw
2007-03-10 00:19:00
cve
cve
CVE-2007-1376
2007-03-10 00:19:00
redhatcve
redhatcve
CVE-2007-1376
2015-10-30 10:00:25
securityvulns
securityvulns
PHP shmop information leak
2007-03-10 00:00:00
openvas
openvas
PHP Shared Memory Functions Resource Verification Arbitrary Code Execution Vulnerability
2010-04-23 00:00:00
Ubuntu Update for php5 vulnerabilities USN-455-1
2009-03-23 00:00:00
Ubuntu: Security Advisory (USN-455-1)
2009-03-23 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2007-04-27 00:00:00
nessus
nessus
Ubuntu 6.06 LTS / 6.10 / 7.04 : php5 vulnerabilities (USN-455-1)
2007-11-10 00:00:00
GLSA-200703-21 : PHP: Multiple vulnerabilities
2007-03-26 00:00:00
SuSE 10 Security Update : PHP5 (ZYPP Patch Number 3290)
2007-12-13 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2007-03-20 00:00:00
osv
osv
php5
2007-04-29 00:00:00
debian
debian
[SECURITY] [DSA 1283-1] New php5 packages fix several vulnerabilities
2007-04-29 20:16:06
suse
suse
remote code execution in php4,php5
2007-05-23 13:16:49
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.049 Low
EPSS
Percentile
92.7%
Related for UB:CVE-2007-1376