Lucene search

K
ubuntucveUbuntu.comUB:CVE-2007-3806
HistoryJul 17, 2007 - 12:00 a.m.

CVE-2007-3806

2007-07-1700:00:00
ubuntu.com
ubuntu.com
13

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.017 Low

EPSS

Percentile

87.6%

The glob function in PHP 5.2.3 allows context-dependent attackers to cause
a denial of service and possibly execute arbitrary code via an invalid
value of the flags parameter, probably related to memory corruption or an
invalid read on win32 platforms, and possibly related to lack of
initialization for a glob structure.

Notes

Author Note
jdstrand Windows only

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.017 Low

EPSS

Percentile

87.6%