NVD Vulnerability Detail

CVE-2007-3799

Summary	The session_start function in ext/session in PHP 4.x up to 4.4.7 and 5.x up to 5.2.3 allows remote attackers to insert arbitrary attributes into the session cookie via special characters in a cookie that is obtained from (1) PATH_INFO, (2) the session_id function, and (3) the session_start function, which are not encoded or filtered when the new session cookie is generated, a related issue to CVE-2006-0207.
Summary	Una función session_start en ext/session en PHP versiones 4.x hasta 4.4.7 y versiones 5.x hasta 5.2.3, permite a atacantes remotos insertar atributos arbitrarios en la cookie de sesión por medio de caracteres especiales en una cookie que es obtenida de (1) PATH_INFO, (2) la función session_id, y (3) la función session_start, que no están codificadas o filtradas cuando es generado la nueva cookie de sesión, lo que constituye un problema relacionado con CVE-2006-0207.
Publication Date	July 17, 2007, 7:30 a.m.
Registration Date	Jan. 29, 2021, 2:16 p.m.
Last Update	April 23, 2026, 9:35 a.m.

CVSS2.0 : MEDIUM
Score	4.3
Vector	AV:N/AC:M/Au:N/C:N/I:P/A:N
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	中
攻撃前の認証要否(Au)	不要
機密性への影響(C)	なし
完全性への影響(I)	低
可用性への影響(A)	なし
Get all privileges.	いいえ
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	いいえ

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:php:php:4.0:beta_4_patch1::::::
cpe:2.3:a:php:php:4.0:beta1::::::
cpe:2.3:a:php:php:4.0:beta2::::::
cpe:2.3:a:php:php:4.0:beta3::::::
cpe:2.3:a:php:php:4.0:beta4::::::
cpe:2.3:a:php:php:4.0.0:::::::*
cpe:2.3:a:php:php:4.0.1:::::::*
cpe:2.3:a:php:php:4.0.2:::::::*
cpe:2.3:a:php:php:4.0.3:::::::*
cpe:2.3:a:php:php:4.0.4:::::::*
cpe:2.3:a:php:php:4.0.5:::::::*
cpe:2.3:a:php:php:4.0.6:::::::*
cpe:2.3:a:php:php:4.0.7:::::::*
cpe:2.3:a:php:php:4.1.0:::::::*
cpe:2.3:a:php:php:4.1.1:::::::*
cpe:2.3:a:php:php:4.1.2:::::::*
cpe:2.3:a:php:php:4.2.0:::::::*
cpe:2.3:a:php:php:4.2.1:::::::*
cpe:2.3:a:php:php:4.2.2:::::::*
cpe:2.3:a:php:php:4.2.3:::::::*
cpe:2.3:a:php:php:4.3.0:::::::*
cpe:2.3:a:php:php:4.3.1:::::::*
cpe:2.3:a:php:php:4.3.2:::::::*
cpe:2.3:a:php:php:4.3.3:::::::*
cpe:2.3:a:php:php:4.3.4:::::::*
cpe:2.3:a:php:php:4.3.5:::::::*
cpe:2.3:a:php:php:4.3.6:::::::*
cpe:2.3:a:php:php:4.3.7:::::::*
cpe:2.3:a:php:php:4.3.8:::::::*
cpe:2.3:a:php:php:4.3.9:::::::*
cpe:2.3:a:php:php:4.3.10:::::::*
cpe:2.3:a:php:php:4.3.11:::::::*
cpe:2.3:a:php:php:4.4.0:::::::*
cpe:2.3:a:php:php:4.4.1:::::::*
cpe:2.3:a:php:php:4.4.2:::::::*
cpe:2.3:a:php:php:4.4.3:::::::*
cpe:2.3:a:php:php:4.4.4:::::::*
cpe:2.3:a:php:php:4.4.5:::::::*
cpe:2.3:a:php:php:4.4.6:::::::*
cpe:2.3:a:php:php:4.4.7:::::::*
cpe:2.3:a:php:php:5.0.0:::::::*
cpe:2.3:a:php:php:5.0.0:beta1::::::
cpe:2.3:a:php:php:5.0.0:beta2::::::
cpe:2.3:a:php:php:5.0.0:beta3::::::
cpe:2.3:a:php:php:5.0.0:beta4::::::
cpe:2.3:a:php:php:5.0.0:rc1::::::
cpe:2.3:a:php:php:5.0.0:rc2::::::
cpe:2.3:a:php:php:5.0.0:rc3::::::
cpe:2.3:a:php:php:5.0.1:::::::*
cpe:2.3:a:php:php:5.0.2:::::::*
cpe:2.3:a:php:php:5.0.3:::::::*
cpe:2.3:a:php:php:5.0.4:::::::*
cpe:2.3:a:php:php:5.0.5:::::::*
cpe:2.3:a:php:php:5.1.0:::::::*
cpe:2.3:a:php:php:5.1.1:::::::*
cpe:2.3:a:php:php:5.1.2:::::::*
cpe:2.3:a:php:php:5.1.3:::::::*
cpe:2.3:a:php:php:5.1.4:::::::*
cpe:2.3:a:php:php:5.1.5:::::::*
cpe:2.3:a:php:php:5.1.6:::::::*
cpe:2.3:a:php:php:5.2.0:::::::*
cpe:2.3:a:php:php:5.2.1:::::::*
cpe:2.3:a:php:php:5.2.2:::::::*
cpe:2.3:a:php:php:5.2.3:::::::*
cpe:2.3:a:php:php:5.2.10:::::::*
cpe:2.3:a:php:php:5.2.11:::::::*
cpe:2.3:a:php:php:5.2.12:::::::*
cpe:2.3:a:php:php:5.2.13:::::::*
cpe:2.3:a:php:php:5.2.14:::::::*

Related information, measures and tools

No	URL	refsource
1	http://docs.info.apple.com/article.html?artnum=307562	cve@mitre.org
2	http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html	cve@mitre.org
3	http://osvdb.org/36855	cve@mitre.org
4	http://rhn.redhat.com/errata/RHSA-2007-0889.html	cve@mitre.org
5	http://secunia.com/advisories/26871	cve@mitre.org
6	http://secunia.com/advisories/26895	cve@mitre.org
7	http://secunia.com/advisories/26930	cve@mitre.org
8	http://secunia.com/advisories/26967	cve@mitre.org
9	http://secunia.com/advisories/27351	cve@mitre.org
10	http://secunia.com/advisories/27377	cve@mitre.org
11	http://secunia.com/advisories/27545	cve@mitre.org
12	http://secunia.com/advisories/27864	cve@mitre.org
13	http://secunia.com/advisories/28249	cve@mitre.org
14	http://secunia.com/advisories/29420	cve@mitre.org
15	http://secunia.com/advisories/30288	cve@mitre.org
16	http://support.avaya.com/elmodocs2/security/ASA-2007-449.htm	cve@mitre.org
17	http://www.debian.org/security/2008/dsa-1444	cve@mitre.org
18	http://www.debian.org/security/2008/dsa-1578	cve@mitre.org
19	http://www.mandriva.com/security/advisories?name=MDKSA-2007:187	cve@mitre.org
20	http://www.novell.com/linux/security/advisories/2007_15_sr.html	cve@mitre.org
21	http://www.php-security.org/MOPB/PMOPB-46-2007.html	cve@mitre.org
22	http://www.redhat.com/support/errata/RHSA-2007-0888.html	cve@mitre.org
23	http://www.redhat.com/support/errata/RHSA-2007-0890.html	cve@mitre.org
24	http://www.redhat.com/support/errata/RHSA-2007-0891.html	cve@mitre.org
25	http://www.securityfocus.com/bid/24268	cve@mitre.org
26	http://www.ubuntu.com/usn/usn-549-2	cve@mitre.org
27	http://www.vupen.com/english/advisories/2008/0924/references	cve@mitre.org
28	https://issues.rpath.com/browse/RPL-1693	cve@mitre.org
29	https://launchpad.net/bugs/173043	cve@mitre.org
30	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9792	cve@mitre.org
31	https://usn.ubuntu.com/549-1/	cve@mitre.org
32	https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00354.html	cve@mitre.org
33	http://docs.info.apple.com/article.html?artnum=307562	af854a3a-2127-422b-91ae-364da2661108
34	http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html	af854a3a-2127-422b-91ae-364da2661108
35	http://osvdb.org/36855	af854a3a-2127-422b-91ae-364da2661108
36	http://rhn.redhat.com/errata/RHSA-2007-0889.html	af854a3a-2127-422b-91ae-364da2661108
37	http://secunia.com/advisories/26871	af854a3a-2127-422b-91ae-364da2661108
38	http://secunia.com/advisories/26895	af854a3a-2127-422b-91ae-364da2661108
39	http://secunia.com/advisories/26930	af854a3a-2127-422b-91ae-364da2661108
40	http://secunia.com/advisories/26967	af854a3a-2127-422b-91ae-364da2661108
41	http://secunia.com/advisories/27351	af854a3a-2127-422b-91ae-364da2661108
42	http://secunia.com/advisories/27377	af854a3a-2127-422b-91ae-364da2661108
43	http://secunia.com/advisories/27545	af854a3a-2127-422b-91ae-364da2661108
44	http://secunia.com/advisories/27864	af854a3a-2127-422b-91ae-364da2661108
45	http://secunia.com/advisories/28249	af854a3a-2127-422b-91ae-364da2661108
46	http://secunia.com/advisories/29420	af854a3a-2127-422b-91ae-364da2661108
47	http://secunia.com/advisories/30288	af854a3a-2127-422b-91ae-364da2661108
48	http://support.avaya.com/elmodocs2/security/ASA-2007-449.htm	af854a3a-2127-422b-91ae-364da2661108
49	http://www.debian.org/security/2008/dsa-1444	af854a3a-2127-422b-91ae-364da2661108
50	http://www.debian.org/security/2008/dsa-1578	af854a3a-2127-422b-91ae-364da2661108
51	http://www.mandriva.com/security/advisories?name=MDKSA-2007:187	af854a3a-2127-422b-91ae-364da2661108
52	http://www.novell.com/linux/security/advisories/2007_15_sr.html	af854a3a-2127-422b-91ae-364da2661108
53	http://www.php-security.org/MOPB/PMOPB-46-2007.html	af854a3a-2127-422b-91ae-364da2661108
54	http://www.redhat.com/support/errata/RHSA-2007-0888.html	af854a3a-2127-422b-91ae-364da2661108
55	http://www.redhat.com/support/errata/RHSA-2007-0890.html	af854a3a-2127-422b-91ae-364da2661108
56	http://www.redhat.com/support/errata/RHSA-2007-0891.html	af854a3a-2127-422b-91ae-364da2661108
57	http://www.securityfocus.com/bid/24268	af854a3a-2127-422b-91ae-364da2661108
58	http://www.ubuntu.com/usn/usn-549-2	af854a3a-2127-422b-91ae-364da2661108
59	http://www.vupen.com/english/advisories/2008/0924/references	af854a3a-2127-422b-91ae-364da2661108
60	https://issues.rpath.com/browse/RPL-1693	af854a3a-2127-422b-91ae-364da2661108
61	https://launchpad.net/bugs/173043	af854a3a-2127-422b-91ae-364da2661108
62	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9792	af854a3a-2127-422b-91ae-364da2661108
63	https://usn.ubuntu.com/549-1/	af854a3a-2127-422b-91ae-364da2661108
64	https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00354.html	af854a3a-2127-422b-91ae-364da2661108

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-20	不適切な入力確認	https://cwe.mitre.org/data/definitions/20.html

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:php:php:4.0:beta_4_patch1::::::
cpe:2.3:a:php:php:4.0:beta1::::::
cpe:2.3:a:php:php:4.0:beta2::::::
cpe:2.3:a:php:php:4.0:beta3::::::
cpe:2.3:a:php:php:4.0:beta4::::::
cpe:2.3:a:php:php:4.0.0:::::::*
cpe:2.3:a:php:php:4.0.1:::::::*
cpe:2.3:a:php:php:4.0.2:::::::*
cpe:2.3:a:php:php:4.0.3:::::::*
cpe:2.3:a:php:php:4.0.4:::::::*
cpe:2.3:a:php:php:4.0.5:::::::*
cpe:2.3:a:php:php:4.0.6:::::::*
cpe:2.3:a:php:php:4.0.7:::::::*
cpe:2.3:a:php:php:4.1.0:::::::*
cpe:2.3:a:php:php:4.1.1:::::::*
cpe:2.3:a:php:php:4.1.2:::::::*
cpe:2.3:a:php:php:4.2.0:::::::*
cpe:2.3:a:php:php:4.2.1:::::::*
cpe:2.3:a:php:php:4.2.2:::::::*
cpe:2.3:a:php:php:4.2.3:::::::*
cpe:2.3:a:php:php:4.3.0:::::::*
cpe:2.3:a:php:php:4.3.1:::::::*
cpe:2.3:a:php:php:4.3.2:::::::*
cpe:2.3:a:php:php:4.3.3:::::::*
cpe:2.3:a:php:php:4.3.4:::::::*
cpe:2.3:a:php:php:4.3.5:::::::*
cpe:2.3:a:php:php:4.3.6:::::::*
cpe:2.3:a:php:php:4.3.7:::::::*
cpe:2.3:a:php:php:4.3.8:::::::*
cpe:2.3:a:php:php:4.3.9:::::::*
cpe:2.3:a:php:php:4.3.10:::::::*
cpe:2.3:a:php:php:4.3.11:::::::*
cpe:2.3:a:php:php:4.4.0:::::::*
cpe:2.3:a:php:php:4.4.1:::::::*
cpe:2.3:a:php:php:4.4.2:::::::*
cpe:2.3:a:php:php:4.4.3:::::::*
cpe:2.3:a:php:php:4.4.4:::::::*
cpe:2.3:a:php:php:4.4.5:::::::*
cpe:2.3:a:php:php:4.4.6:::::::*
cpe:2.3:a:php:php:4.4.7:::::::*
cpe:2.3:a:php:php:5.0.0:::::::*
cpe:2.3:a:php:php:5.0.0:beta1::::::
cpe:2.3:a:php:php:5.0.0:beta2::::::
cpe:2.3:a:php:php:5.0.0:beta3::::::
cpe:2.3:a:php:php:5.0.0:beta4::::::
cpe:2.3:a:php:php:5.0.0:rc1::::::
cpe:2.3:a:php:php:5.0.0:rc2::::::
cpe:2.3:a:php:php:5.0.0:rc3::::::
cpe:2.3:a:php:php:5.0.1:::::::*
cpe:2.3:a:php:php:5.0.2:::::::*
cpe:2.3:a:php:php:5.0.3:::::::*
cpe:2.3:a:php:php:5.0.4:::::::*
cpe:2.3:a:php:php:5.0.5:::::::*
cpe:2.3:a:php:php:5.1.0:::::::*
cpe:2.3:a:php:php:5.1.1:::::::*
cpe:2.3:a:php:php:5.1.2:::::::*
cpe:2.3:a:php:php:5.1.3:::::::*
cpe:2.3:a:php:php:5.1.4:::::::*
cpe:2.3:a:php:php:5.1.5:::::::*
cpe:2.3:a:php:php:5.1.6:::::::*
cpe:2.3:a:php:php:5.2.0:::::::*
cpe:2.3:a:php:php:5.2.1:::::::*
cpe:2.3:a:php:php:5.2.2:::::::*
cpe:2.3:a:php:php:5.2.3:::::::*
cpe:2.3:a:php:php:5.2.10:::::::*
cpe:2.3:a:php:php:5.2.11:::::::*
cpe:2.3:a:php:php:5.2.12:::::::*
cpe:2.3:a:php:php:5.2.13:::::::*
cpe:2.3:a:php:php:5.2.14:::::::*