NVD Vulnerability Detail

CVE-2007-0906

Summary	Multiple buffer overflows in PHP before 5.2.1 allow attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors in the (1) session, (2) zip, (3) imap, and (4) sqlite extensions; (5) stream filters; and the (6) str_replace, (7) mail, (8) ibase_delete_user, (9) ibase_add_user, and (10) ibase_modify_user functions. NOTE: vector 6 might actually be an integer overflow (CVE-2007-1885). NOTE: as of 20070411, vector (3) might involve the imap_mail_compose function (CVE-2007-1825).
Summary	Los múltiples desbordamientos de búfer en PHP versión anterior a 5.2.1 permiten a los atacantes causar una denegación de servicio y posiblemente ejecutar código arbitrario por medio de vectores no específicos en las extensiones (1) session, (2) zip, (3) imap y (4) sqlite; (5) filtros de flujo; y las funciones (6) str_replace, (7) mail, (8) ibase_delete_user, (9) ibase_add_user y (10) ibase_modify_user. NOTA: el vector 6 podría ser en realidad un desbordamiento de entero (CVE-2007-1885). NOTA: a partir de 20070411, el vector (3) puede involucrar la función imap_mail_compose (CVE-2007-1825).
Publication Date	Feb. 14, 2007, 8:28 a.m.
Registration Date	Jan. 29, 2021, 2:07 p.m.
Last Update	April 23, 2026, 9:35 a.m.

CVSS2.0 : HIGH
Score	7.5
Vector	AV:N/AC:L/Au:N/C:P/I:P/A:P
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	低
完全性への影響(I)	低
可用性への影響(A)	低
Get all privileges.	いいえ
Get user privileges	いいえ
Get other privileges	はい
User operation required	いいえ

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:php:php:3.0:::::::*
cpe:2.3:a:php:php:3.0.1:::::::*
cpe:2.3:a:php:php:3.0.2:::::::*
cpe:2.3:a:php:php:3.0.3:::::::*
cpe:2.3:a:php:php:3.0.4:::::::*
cpe:2.3:a:php:php:3.0.5:::::::*
cpe:2.3:a:php:php:3.0.6:::::::*
cpe:2.3:a:php:php:3.0.7:::::::*
cpe:2.3:a:php:php:3.0.8:::::::*
cpe:2.3:a:php:php:3.0.9:::::::*
cpe:2.3:a:php:php:3.0.10:::::::*
cpe:2.3:a:php:php:3.0.11:::::::*
cpe:2.3:a:php:php:3.0.12:::::::*
cpe:2.3:a:php:php:3.0.13:::::::*
cpe:2.3:a:php:php:3.0.14:::::::*
cpe:2.3:a:php:php:3.0.15:::::::*
cpe:2.3:a:php:php:3.0.16:::::::*
cpe:2.3:a:php:php:3.0.17:::::::*
cpe:2.3:a:php:php:3.0.18:::::::*
cpe:2.3:a:php:php:4.0:::::::*
cpe:2.3:a:php:php:4.0.1:::::::*
cpe:2.3:a:php:php:4.0.1:patch1::::::
cpe:2.3:a:php:php:4.0.1:patch2::::::
cpe:2.3:a:php:php:4.0.2:::::::*
cpe:2.3:a:php:php:4.0.3:::::::*
cpe:2.3:a:php:php:4.0.3:patch1::::::
cpe:2.3:a:php:php:4.0.4:::::::*
cpe:2.3:a:php:php:4.0.5:::::::*
cpe:2.3:a:php:php:4.0.6:::::::*
cpe:2.3:a:php:php:4.0.7:::::::*
cpe:2.3:a:php:php:4.0.7:rc1::::::
cpe:2.3:a:php:php:4.0.7:rc2::::::
cpe:2.3:a:php:php:4.0.7:rc3::::::
cpe:2.3:a:php:php:4.1.0:::::::*
cpe:2.3:a:php:php:4.1.1:::::::*
cpe:2.3:a:php:php:4.1.2:::::::*
cpe:2.3:a:php:php:4.2::dev:::::
cpe:2.3:a:php:php:4.2.0:::::::*
cpe:2.3:a:php:php:4.2.1:::::::*
cpe:2.3:a:php:php:4.2.2:::::::*
cpe:2.3:a:php:php:4.2.3:::::::*
cpe:2.3:a:php:php:4.3.0:::::::*
cpe:2.3:a:php:php:4.3.1:::::::*
cpe:2.3:a:php:php:4.3.2:::::::*
cpe:2.3:a:php:php:4.3.3:::::::*
cpe:2.3:a:php:php:4.3.4:::::::*
cpe:2.3:a:php:php:4.3.5:::::::*
cpe:2.3:a:php:php:4.3.6:::::::*
cpe:2.3:a:php:php:4.3.7:::::::*
cpe:2.3:a:php:php:4.3.8:::::::*
cpe:2.3:a:php:php:4.3.9:::::::*
cpe:2.3:a:php:php:4.3.10:::::::*
cpe:2.3:a:php:php:4.3.11:::::::*
cpe:2.3:a:php:php:4.4.0:::::::*
cpe:2.3:a:php:php:4.4.1:::::::*
cpe:2.3:a:php:php:4.4.2:::::::*
cpe:2.3:a:php:php:4.4.3:::::::*
cpe:2.3:a:php:php:4.4.4:::::::*
cpe:2.3:a:php:php:5.0:rc1::::::
cpe:2.3:a:php:php:5.0:rc2::::::
cpe:2.3:a:php:php:5.0:rc3::::::
cpe:2.3:a:php:php:5.0.0:::::::*
cpe:2.3:a:php:php:5.0.1:::::::*
cpe:2.3:a:php:php:5.0.2:::::::*
cpe:2.3:a:php:php:5.0.3:::::::*
cpe:2.3:a:php:php:5.0.4:::::::*
cpe:2.3:a:php:php:5.0.5:::::::*
cpe:2.3:a:php:php:5.1.0:::::::*
cpe:2.3:a:php:php:5.1.1:::::::*
cpe:2.3:a:php:php:5.1.2:::::::*
cpe:2.3:a:php:php:5.1.3:::::::*
cpe:2.3:a:php:php:5.1.4:::::::*
cpe:2.3:a:php:php:5.1.5:::::::*
cpe:2.3:a:php:php:5.1.6:::::::*
cpe:2.3:a:php:php:5.2.0:::::::*
cpe:2.3:o:trustix:secure_linux:2.2:::::::*
cpe:2.3:o:trustix:secure_linux:3.0:::::::*

Related information, measures and tools

No	URL	refsource
1	ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc	cve@mitre.org
2	http://lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.html	cve@mitre.org
3	http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html	cve@mitre.org
4	http://osvdb.org/34706	cve@mitre.org
5	http://osvdb.org/34707	cve@mitre.org
6	http://osvdb.org/34708	cve@mitre.org
7	http://osvdb.org/34709	cve@mitre.org
8	http://osvdb.org/34710	cve@mitre.org
9	http://osvdb.org/34711	cve@mitre.org
10	http://osvdb.org/34712	cve@mitre.org
11	http://osvdb.org/34713	cve@mitre.org
12	http://osvdb.org/34714	cve@mitre.org
13	http://osvdb.org/34715	cve@mitre.org
14	http://rhn.redhat.com/errata/RHSA-2007-0089.html	cve@mitre.org
15	http://secunia.com/advisories/24089	cve@mitre.org
16	http://secunia.com/advisories/24195	cve@mitre.org
17	http://secunia.com/advisories/24217	cve@mitre.org
18	http://secunia.com/advisories/24236	cve@mitre.org
19	http://secunia.com/advisories/24248	cve@mitre.org
20	http://secunia.com/advisories/24284	cve@mitre.org
21	http://secunia.com/advisories/24295	cve@mitre.org
22	http://secunia.com/advisories/24322	cve@mitre.org
23	http://secunia.com/advisories/24419	cve@mitre.org
24	http://secunia.com/advisories/24421	cve@mitre.org
25	http://secunia.com/advisories/24432	cve@mitre.org
26	http://secunia.com/advisories/24514	cve@mitre.org
27	http://secunia.com/advisories/24606	cve@mitre.org
28	http://secunia.com/advisories/24642	cve@mitre.org
29	http://secunia.com/advisories/24945	cve@mitre.org
30	http://secunia.com/advisories/26048	cve@mitre.org
31	http://security.gentoo.org/glsa/glsa-200703-21.xml	cve@mitre.org
32	http://support.avaya.com/elmodocs2/security/ASA-2007-101.htm	cve@mitre.org
33	http://support.avaya.com/elmodocs2/security/ASA-2007-136.htm	cve@mitre.org
34	http://www.mandriva.com/security/advisories?name=MDKSA-2007:048	cve@mitre.org
35	http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html	cve@mitre.org
36	http://www.osvdb.org/32776	cve@mitre.org
37	http://www.php.net/ChangeLog-5.php#5.2.1	cve@mitre.org
38	http://www.php.net/releases/5_2_1.php	cve@mitre.org
39	http://www.redhat.com/support/errata/RHSA-2007-0076.html	cve@mitre.org
40	http://www.redhat.com/support/errata/RHSA-2007-0081.html	cve@mitre.org
41	http://www.redhat.com/support/errata/RHSA-2007-0082.html	cve@mitre.org
42	http://www.redhat.com/support/errata/RHSA-2007-0088.html	cve@mitre.org
43	http://www.securityfocus.com/archive/1/461462/100/0/threaded	cve@mitre.org
44	http://www.securityfocus.com/archive/1/466166/100/0/threaded	cve@mitre.org
45	http://www.securityfocus.com/bid/22496	cve@mitre.org
46	http://www.securitytracker.com/id?1017671	cve@mitre.org
47	http://www.trustix.org/errata/2007/0009/	cve@mitre.org
48	http://www.ubuntu.com/usn/usn-424-1	cve@mitre.org
49	http://www.ubuntu.com/usn/usn-424-2	cve@mitre.org
50	http://www.us.debian.org/security/2007/dsa-1264	cve@mitre.org
51	http://www.vupen.com/english/advisories/2007/0546	cve@mitre.org
52	https://issues.rpath.com/browse/RPL-1088	cve@mitre.org
53	https://issues.rpath.com/browse/RPL-1268	cve@mitre.org
54	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8992	cve@mitre.org
55	ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc	af854a3a-2127-422b-91ae-364da2661108
56	http://lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.html	af854a3a-2127-422b-91ae-364da2661108
57	http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html	af854a3a-2127-422b-91ae-364da2661108
58	http://osvdb.org/34706	af854a3a-2127-422b-91ae-364da2661108
59	http://osvdb.org/34707	af854a3a-2127-422b-91ae-364da2661108
60	http://osvdb.org/34708	af854a3a-2127-422b-91ae-364da2661108
61	http://osvdb.org/34709	af854a3a-2127-422b-91ae-364da2661108
62	http://osvdb.org/34710	af854a3a-2127-422b-91ae-364da2661108
63	http://osvdb.org/34711	af854a3a-2127-422b-91ae-364da2661108
64	http://osvdb.org/34712	af854a3a-2127-422b-91ae-364da2661108
65	http://osvdb.org/34713	af854a3a-2127-422b-91ae-364da2661108
66	http://osvdb.org/34714	af854a3a-2127-422b-91ae-364da2661108
67	http://osvdb.org/34715	af854a3a-2127-422b-91ae-364da2661108
68	http://rhn.redhat.com/errata/RHSA-2007-0089.html	af854a3a-2127-422b-91ae-364da2661108
69	http://secunia.com/advisories/24089	af854a3a-2127-422b-91ae-364da2661108
70	http://secunia.com/advisories/24195	af854a3a-2127-422b-91ae-364da2661108
71	http://secunia.com/advisories/24217	af854a3a-2127-422b-91ae-364da2661108
72	http://secunia.com/advisories/24236	af854a3a-2127-422b-91ae-364da2661108
73	http://secunia.com/advisories/24248	af854a3a-2127-422b-91ae-364da2661108
74	http://secunia.com/advisories/24284	af854a3a-2127-422b-91ae-364da2661108
75	http://secunia.com/advisories/24295	af854a3a-2127-422b-91ae-364da2661108
76	http://secunia.com/advisories/24322	af854a3a-2127-422b-91ae-364da2661108
77	http://secunia.com/advisories/24419	af854a3a-2127-422b-91ae-364da2661108
78	http://secunia.com/advisories/24421	af854a3a-2127-422b-91ae-364da2661108
79	http://secunia.com/advisories/24432	af854a3a-2127-422b-91ae-364da2661108
80	http://secunia.com/advisories/24514	af854a3a-2127-422b-91ae-364da2661108
81	http://secunia.com/advisories/24606	af854a3a-2127-422b-91ae-364da2661108
82	http://secunia.com/advisories/24642	af854a3a-2127-422b-91ae-364da2661108
83	http://secunia.com/advisories/24945	af854a3a-2127-422b-91ae-364da2661108
84	http://secunia.com/advisories/26048	af854a3a-2127-422b-91ae-364da2661108
85	http://security.gentoo.org/glsa/glsa-200703-21.xml	af854a3a-2127-422b-91ae-364da2661108
86	http://support.avaya.com/elmodocs2/security/ASA-2007-101.htm	af854a3a-2127-422b-91ae-364da2661108
87	http://support.avaya.com/elmodocs2/security/ASA-2007-136.htm	af854a3a-2127-422b-91ae-364da2661108
88	http://www.mandriva.com/security/advisories?name=MDKSA-2007:048	af854a3a-2127-422b-91ae-364da2661108
89	http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html	af854a3a-2127-422b-91ae-364da2661108
90	http://www.osvdb.org/32776	af854a3a-2127-422b-91ae-364da2661108
91	http://www.php.net/ChangeLog-5.php#5.2.1	af854a3a-2127-422b-91ae-364da2661108
92	http://www.php.net/releases/5_2_1.php	af854a3a-2127-422b-91ae-364da2661108
93	http://www.redhat.com/support/errata/RHSA-2007-0076.html	af854a3a-2127-422b-91ae-364da2661108
94	http://www.redhat.com/support/errata/RHSA-2007-0081.html	af854a3a-2127-422b-91ae-364da2661108
95	http://www.redhat.com/support/errata/RHSA-2007-0082.html	af854a3a-2127-422b-91ae-364da2661108
96	http://www.redhat.com/support/errata/RHSA-2007-0088.html	af854a3a-2127-422b-91ae-364da2661108
97	http://www.securityfocus.com/archive/1/461462/100/0/threaded	af854a3a-2127-422b-91ae-364da2661108
98	http://www.securityfocus.com/archive/1/466166/100/0/threaded	af854a3a-2127-422b-91ae-364da2661108
99	http://www.securityfocus.com/bid/22496	af854a3a-2127-422b-91ae-364da2661108
100	http://www.securitytracker.com/id?1017671	af854a3a-2127-422b-91ae-364da2661108
101	http://www.trustix.org/errata/2007/0009/	af854a3a-2127-422b-91ae-364da2661108
102	http://www.ubuntu.com/usn/usn-424-1	af854a3a-2127-422b-91ae-364da2661108
103	http://www.ubuntu.com/usn/usn-424-2	af854a3a-2127-422b-91ae-364da2661108
104	http://www.us.debian.org/security/2007/dsa-1264	af854a3a-2127-422b-91ae-364da2661108
105	http://www.vupen.com/english/advisories/2007/0546	af854a3a-2127-422b-91ae-364da2661108
106	https://issues.rpath.com/browse/RPL-1088	af854a3a-2127-422b-91ae-364da2661108
107	https://issues.rpath.com/browse/RPL-1268	af854a3a-2127-422b-91ae-364da2661108
108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8992	af854a3a-2127-422b-91ae-364da2661108

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-119	バッファエラー	https://cwe.mitre.org/data/definitions/118.html

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:php:php:3.0:::::::*
cpe:2.3:a:php:php:3.0.1:::::::*
cpe:2.3:a:php:php:3.0.2:::::::*
cpe:2.3:a:php:php:3.0.3:::::::*
cpe:2.3:a:php:php:3.0.4:::::::*
cpe:2.3:a:php:php:3.0.5:::::::*
cpe:2.3:a:php:php:3.0.6:::::::*
cpe:2.3:a:php:php:3.0.7:::::::*
cpe:2.3:a:php:php:3.0.8:::::::*
cpe:2.3:a:php:php:3.0.9:::::::*
cpe:2.3:a:php:php:3.0.10:::::::*
cpe:2.3:a:php:php:3.0.11:::::::*
cpe:2.3:a:php:php:3.0.12:::::::*
cpe:2.3:a:php:php:3.0.13:::::::*
cpe:2.3:a:php:php:3.0.14:::::::*
cpe:2.3:a:php:php:3.0.15:::::::*
cpe:2.3:a:php:php:3.0.16:::::::*
cpe:2.3:a:php:php:3.0.17:::::::*
cpe:2.3:a:php:php:3.0.18:::::::*
cpe:2.3:a:php:php:4.0:::::::*
cpe:2.3:a:php:php:4.0.1:::::::*
cpe:2.3:a:php:php:4.0.1:patch1::::::
cpe:2.3:a:php:php:4.0.1:patch2::::::
cpe:2.3:a:php:php:4.0.2:::::::*
cpe:2.3:a:php:php:4.0.3:::::::*
cpe:2.3:a:php:php:4.0.3:patch1::::::
cpe:2.3:a:php:php:4.0.4:::::::*
cpe:2.3:a:php:php:4.0.5:::::::*
cpe:2.3:a:php:php:4.0.6:::::::*
cpe:2.3:a:php:php:4.0.7:::::::*
cpe:2.3:a:php:php:4.0.7:rc1::::::
cpe:2.3:a:php:php:4.0.7:rc2::::::
cpe:2.3:a:php:php:4.0.7:rc3::::::
cpe:2.3:a:php:php:4.1.0:::::::*
cpe:2.3:a:php:php:4.1.1:::::::*
cpe:2.3:a:php:php:4.1.2:::::::*
cpe:2.3:a:php:php:4.2::dev:::::
cpe:2.3:a:php:php:4.2.0:::::::*
cpe:2.3:a:php:php:4.2.1:::::::*
cpe:2.3:a:php:php:4.2.2:::::::*
cpe:2.3:a:php:php:4.2.3:::::::*
cpe:2.3:a:php:php:4.3.0:::::::*
cpe:2.3:a:php:php:4.3.1:::::::*
cpe:2.3:a:php:php:4.3.2:::::::*
cpe:2.3:a:php:php:4.3.3:::::::*
cpe:2.3:a:php:php:4.3.4:::::::*
cpe:2.3:a:php:php:4.3.5:::::::*
cpe:2.3:a:php:php:4.3.6:::::::*
cpe:2.3:a:php:php:4.3.7:::::::*
cpe:2.3:a:php:php:4.3.8:::::::*
cpe:2.3:a:php:php:4.3.9:::::::*
cpe:2.3:a:php:php:4.3.10:::::::*
cpe:2.3:a:php:php:4.3.11:::::::*
cpe:2.3:a:php:php:4.4.0:::::::*
cpe:2.3:a:php:php:4.4.1:::::::*
cpe:2.3:a:php:php:4.4.2:::::::*
cpe:2.3:a:php:php:4.4.3:::::::*
cpe:2.3:a:php:php:4.4.4:::::::*
cpe:2.3:a:php:php:5.0:rc1::::::
cpe:2.3:a:php:php:5.0:rc2::::::
cpe:2.3:a:php:php:5.0:rc3::::::
cpe:2.3:a:php:php:5.0.0:::::::*
cpe:2.3:a:php:php:5.0.1:::::::*
cpe:2.3:a:php:php:5.0.2:::::::*
cpe:2.3:a:php:php:5.0.3:::::::*
cpe:2.3:a:php:php:5.0.4:::::::*
cpe:2.3:a:php:php:5.0.5:::::::*
cpe:2.3:a:php:php:5.1.0:::::::*
cpe:2.3:a:php:php:5.1.1:::::::*
cpe:2.3:a:php:php:5.1.2:::::::*
cpe:2.3:a:php:php:5.1.3:::::::*
cpe:2.3:a:php:php:5.1.4:::::::*
cpe:2.3:a:php:php:5.1.5:::::::*
cpe:2.3:a:php:php:5.1.6:::::::*
cpe:2.3:a:php:php:5.2.0:::::::*
cpe:2.3:o:trustix:secure_linux:2.2:::::::*
cpe:2.3:o:trustix:secure_linux:3.0:::::::*