CVE-2007-4657

2007-09-0400:00:00

ubuntu.com

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.015 Low

EPSS

Percentile

86.6%

JSON

Multiple integer overflows in PHP 4 before 4.4.8, and PHP 5 before 5.2.4,
allow remote attackers to obtain sensitive information (memory contents) or
cause a denial of service (thread crash) via a large len value to the (1)
strspn or (2) strcspn function, which triggers an out-of-bounds read.
NOTE: this affects different product versions than CVE-2007-3996.

Notes

Author	Note
kees	http://cvs.php.net/viewcvs.cgi/php-src/ext/standard/string.c?r1=1.640&r2=1.641, prior to line 7667 201-strspn-oob-read.patch

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchphp5< 5.1.2-1ubuntu3.10UNKNOWN
ubuntu6.10noarchphp5< 5.1.6-1ubuntu2.7UNKNOWN
ubuntu7.04noarchphp5< 5.2.1-0ubuntu1.5UNKNOWN
ubuntu7.10noarchphp5< 5.2.3-1ubuntu6.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	6.06	noarch	php5	< 5.1.2-1ubuntu3.10	UNKNOWN
ubuntu	6.10	noarch	php5	< 5.1.6-1ubuntu2.7	UNKNOWN
ubuntu	7.04	noarch	php5	< 5.2.1-0ubuntu1.5	UNKNOWN
ubuntu	7.10	noarch	php5	< 5.2.3-1ubuntu6.1	UNKNOWN