NVD脆弱性詳細

CVE-2007-0988

概要	The zend_hash_init function in PHP 5 before 5.2.1 and PHP 4 before 4.4.5, when running on a 64-bit platform, allows context-dependent attackers to cause a denial of service (infinite loop) by unserializing certain integer expressions, which only cause 32-bit arguments to be used after the check for a negative value, as demonstrated by an "a:2147483649:{" argument.
概要	La función zend_hash_init en PHP versión 5 anterior a 5.2.1 y PHP versión 4 anterior a 4.4.5, cuando se ejecuta en una plataforma de 64 bits, permite a los atacantes dependiendo del contexto causar una denegación de servicio (bucle infinito) al deserializar ciertas expresiones de enteros, que solo causa que argumentos de 32 bits sean usados después de la comprobación de un valor negativo, como es demostrado por un argumento "a:2147483649:{".
公表日	2007年2月21日2:28
登録日	2021年1月29日14:07
最終更新日	2026年4月23日9:35

CVSS2.0 : MEDIUM
スコア	4.3
ベクター	AV:N/AC:M/Au:N/C:N/I:N/A:P
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	中
攻撃前の認証要否(Au)	不要
機密性への影響(C)	なし
完全性への影響(I)	なし
可用性への影響(A)	低
全ての特権を取得	いいえ
ユーザー権限を取得	いいえ
その他の権限を取得	いいえ
ユーザー操作が必要	はい

影響を受けるソフトウェアの構成

構成1	以上	以下	より上	未満
cpe:2.3:a:php:php::::::::	4.0.0			4.4.5
cpe:2.3:a:php:php::::::::	5.0.0			5.2.1
cpe:2.3:a:php:php:4.0:::::::*
cpe:2.3:a:php:php:4.0:beta_4_patch1::::::
cpe:2.3:a:php:php:4.0:beta1::::::
cpe:2.3:a:php:php:4.0:beta2::::::
cpe:2.3:a:php:php:4.0:beta3::::::
cpe:2.3:a:php:php:4.0:beta4::::::
cpe:2.3:a:php:php:4.0:rc1::::::
cpe:2.3:a:php:php:4.0:rc2::::::
cpe:2.3:o:canonical:ubuntu_linux:5.10:::::::*
cpe:2.3:o:canonical:ubuntu_linux:6.06::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:6.10:::::::*

関連情報、対策とツール

No	URL	refsource
1	ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc	cve@mitre.org
2	http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=228858	cve@mitre.org
3	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01056506	cve@mitre.org
4	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01086137	cve@mitre.org
5	http://osvdb.org/32762	cve@mitre.org
6	http://rhn.redhat.com/errata/RHSA-2007-0089.html	cve@mitre.org
7	http://secunia.com/advisories/24195	cve@mitre.org
8	http://secunia.com/advisories/24217	cve@mitre.org
9	http://secunia.com/advisories/24236	cve@mitre.org
10	http://secunia.com/advisories/24248	cve@mitre.org
11	http://secunia.com/advisories/24284	cve@mitre.org
12	http://secunia.com/advisories/24295	cve@mitre.org
13	http://secunia.com/advisories/24322	cve@mitre.org
14	http://secunia.com/advisories/24419	cve@mitre.org
15	http://secunia.com/advisories/24421	cve@mitre.org
16	http://secunia.com/advisories/24432	cve@mitre.org
17	http://secunia.com/advisories/24606	cve@mitre.org
18	http://secunia.com/advisories/24642	cve@mitre.org
19	http://secunia.com/advisories/25056	cve@mitre.org
20	http://secunia.com/advisories/25423	cve@mitre.org
21	http://secunia.com/advisories/25850	cve@mitre.org
22	http://security.gentoo.org/glsa/glsa-200703-21.xml	cve@mitre.org
23	http://securityreason.com/securityalert/2315	cve@mitre.org
24	http://support.avaya.com/elmodocs2/security/ASA-2007-101.htm	cve@mitre.org
25	http://support.avaya.com/elmodocs2/security/ASA-2007-136.htm	cve@mitre.org
26	http://www.mandriva.com/security/advisories?name=MDKSA-2007:048	cve@mitre.org
27	http://www.novell.com/linux/security/advisories/2007_32_php.html	cve@mitre.org
28	http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html	cve@mitre.org
29	http://www.php-security.org/MOPB/MOPB-05-2007.html	cve@mitre.org
30	http://www.php.net/releases/5_2_1.php	cve@mitre.org
31	http://www.redhat.com/support/errata/RHSA-2007-0076.html	cve@mitre.org
32	http://www.redhat.com/support/errata/RHSA-2007-0081.html	cve@mitre.org
33	http://www.redhat.com/support/errata/RHSA-2007-0082.html	cve@mitre.org
34	http://www.redhat.com/support/errata/RHSA-2007-0088.html	cve@mitre.org
35	http://www.securityfocus.com/archive/1/461462/100/0/threaded	cve@mitre.org
36	http://www.securitytracker.com/id?1017671	cve@mitre.org
37	http://www.trustix.org/errata/2007/0009/	cve@mitre.org
38	http://www.ubuntu.com/usn/usn-424-1	cve@mitre.org
39	http://www.ubuntu.com/usn/usn-424-2	cve@mitre.org
40	http://www.us.debian.org/security/2007/dsa-1264	cve@mitre.org
41	http://www.vupen.com/english/advisories/2007/1991	cve@mitre.org
42	http://www.vupen.com/english/advisories/2007/2374	cve@mitre.org
43	https://exchange.xforce.ibmcloud.com/vulnerabilities/32709	cve@mitre.org
44	https://issues.rpath.com/browse/RPL-1088	cve@mitre.org
45	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11092	cve@mitre.org
46	ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc	af854a3a-2127-422b-91ae-364da2661108
47	http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=228858	af854a3a-2127-422b-91ae-364da2661108
48	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01056506	af854a3a-2127-422b-91ae-364da2661108
49	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01086137	af854a3a-2127-422b-91ae-364da2661108
50	http://osvdb.org/32762	af854a3a-2127-422b-91ae-364da2661108
51	http://rhn.redhat.com/errata/RHSA-2007-0089.html	af854a3a-2127-422b-91ae-364da2661108
52	http://secunia.com/advisories/24195	af854a3a-2127-422b-91ae-364da2661108
53	http://secunia.com/advisories/24217	af854a3a-2127-422b-91ae-364da2661108
54	http://secunia.com/advisories/24236	af854a3a-2127-422b-91ae-364da2661108
55	http://secunia.com/advisories/24248	af854a3a-2127-422b-91ae-364da2661108
56	http://secunia.com/advisories/24284	af854a3a-2127-422b-91ae-364da2661108
57	http://secunia.com/advisories/24295	af854a3a-2127-422b-91ae-364da2661108
58	http://secunia.com/advisories/24322	af854a3a-2127-422b-91ae-364da2661108
59	http://secunia.com/advisories/24419	af854a3a-2127-422b-91ae-364da2661108
60	http://secunia.com/advisories/24421	af854a3a-2127-422b-91ae-364da2661108
61	http://secunia.com/advisories/24432	af854a3a-2127-422b-91ae-364da2661108
62	http://secunia.com/advisories/24606	af854a3a-2127-422b-91ae-364da2661108
63	http://secunia.com/advisories/24642	af854a3a-2127-422b-91ae-364da2661108
64	http://secunia.com/advisories/25056	af854a3a-2127-422b-91ae-364da2661108
65	http://secunia.com/advisories/25423	af854a3a-2127-422b-91ae-364da2661108
66	http://secunia.com/advisories/25850	af854a3a-2127-422b-91ae-364da2661108
67	http://security.gentoo.org/glsa/glsa-200703-21.xml	af854a3a-2127-422b-91ae-364da2661108
68	http://securityreason.com/securityalert/2315	af854a3a-2127-422b-91ae-364da2661108
69	http://support.avaya.com/elmodocs2/security/ASA-2007-101.htm	af854a3a-2127-422b-91ae-364da2661108
70	http://support.avaya.com/elmodocs2/security/ASA-2007-136.htm	af854a3a-2127-422b-91ae-364da2661108
71	http://www.mandriva.com/security/advisories?name=MDKSA-2007:048	af854a3a-2127-422b-91ae-364da2661108
72	http://www.novell.com/linux/security/advisories/2007_32_php.html	af854a3a-2127-422b-91ae-364da2661108
73	http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html	af854a3a-2127-422b-91ae-364da2661108
74	http://www.php-security.org/MOPB/MOPB-05-2007.html	af854a3a-2127-422b-91ae-364da2661108
75	http://www.php.net/releases/5_2_1.php	af854a3a-2127-422b-91ae-364da2661108
76	http://www.redhat.com/support/errata/RHSA-2007-0076.html	af854a3a-2127-422b-91ae-364da2661108
77	http://www.redhat.com/support/errata/RHSA-2007-0081.html	af854a3a-2127-422b-91ae-364da2661108
78	http://www.redhat.com/support/errata/RHSA-2007-0082.html	af854a3a-2127-422b-91ae-364da2661108
79	http://www.redhat.com/support/errata/RHSA-2007-0088.html	af854a3a-2127-422b-91ae-364da2661108
80	http://www.securityfocus.com/archive/1/461462/100/0/threaded	af854a3a-2127-422b-91ae-364da2661108
81	http://www.securitytracker.com/id?1017671	af854a3a-2127-422b-91ae-364da2661108
82	http://www.trustix.org/errata/2007/0009/	af854a3a-2127-422b-91ae-364da2661108
83	http://www.ubuntu.com/usn/usn-424-1	af854a3a-2127-422b-91ae-364da2661108
84	http://www.ubuntu.com/usn/usn-424-2	af854a3a-2127-422b-91ae-364da2661108
85	http://www.us.debian.org/security/2007/dsa-1264	af854a3a-2127-422b-91ae-364da2661108
86	http://www.vupen.com/english/advisories/2007/1991	af854a3a-2127-422b-91ae-364da2661108
87	http://www.vupen.com/english/advisories/2007/2374	af854a3a-2127-422b-91ae-364da2661108
88	https://exchange.xforce.ibmcloud.com/vulnerabilities/32709	af854a3a-2127-422b-91ae-364da2661108
89	https://issues.rpath.com/browse/RPL-1088	af854a3a-2127-422b-91ae-364da2661108
90	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11092	af854a3a-2127-422b-91ae-364da2661108

共通脆弱性一覧

No	CWE	名前	URL
1	CWE-119	バッファエラー	https://cwe.mitre.org/data/definitions/118.html

構成1	以上	以下	より上	未満
cpe:2.3:a:php:php::::::::	4.0.0			4.4.5
cpe:2.3:a:php:php::::::::	5.0.0			5.2.1
cpe:2.3:a:php:php:4.0:::::::*
cpe:2.3:a:php:php:4.0:beta_4_patch1::::::
cpe:2.3:a:php:php:4.0:beta1::::::
cpe:2.3:a:php:php:4.0:beta2::::::
cpe:2.3:a:php:php:4.0:beta3::::::
cpe:2.3:a:php:php:4.0:beta4::::::
cpe:2.3:a:php:php:4.0:rc1::::::
cpe:2.3:a:php:php:4.0:rc2::::::
cpe:2.3:o:canonical:ubuntu_linux:5.10:::::::*
cpe:2.3:o:canonical:ubuntu_linux:6.06::::lts:::
cpe:2.3:o:canonical:ubuntu_linux:6.10:::::::*