Vulnerability-Lookup

CVE-2007-0909 (GCVE-0-2007-0909)

Vulnerability from cvelistv5 – Published: 2007-02-14 04:00 – Updated: 2024-08-07 12:34

Summary

Multiple format string vulnerabilities in PHP before 5.2.1 might allow attackers to execute arbitrary code via format string specifiers to (1) all of the *print functions on 64-bit systems, and (2) the odbc_result_all function.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://www.us.debian.org/security/2007/dsa-1264	vendor-advisoryx_refsource_DEBIAN
	http://secunia.com/advisories/24295	third-party-advisoryx_refsource_SECUNIA
	http://www.trustix.org/errata/2007/0009/	vendor-advisoryx_refsource_TRUSTIX
	http://www.openpkg.com/security/advisories/OpenPK…	vendor-advisoryx_refsource_OPENPKG
	http://secunia.com/advisories/24195	third-party-advisoryx_refsource_SECUNIA
	https://oval.cisecurity.org/repository/search/def…	vdb-entrysignaturex_refsource_OVAL
	http://www.securitytracker.com/id?1017671	vdb-entryx_refsource_SECTRACK
	http://secunia.com/advisories/24606	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/24642	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/24217	third-party-advisoryx_refsource_SECUNIA
	http://support.avaya.com/elmodocs2/security/ASA-2…	x_refsource_CONFIRM
	http://secunia.com/advisories/24248	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/24514	third-party-advisoryx_refsource_SECUNIA
	http://www.securityfocus.com/bid/22496	vdb-entryx_refsource_BID
	https://issues.rpath.com/browse/RPL-1088	x_refsource_CONFIRM
	http://secunia.com/advisories/24284	third-party-advisoryx_refsource_SECUNIA
	http://www.ubuntu.com/usn/usn-424-2	vendor-advisoryx_refsource_UBUNTU
	http://www.php.net/releases/5_2_1.php	x_refsource_CONFIRM
	http://security.gentoo.org/glsa/glsa-200703-21.xml	vendor-advisoryx_refsource_GENTOO
	http://secunia.com/advisories/24432	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/24421	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/24089	third-party-advisoryx_refsource_SECUNIA
	http://lists.suse.com/archive/suse-security-annou…	vendor-advisoryx_refsource_SUSE
	http://www.redhat.com/support/errata/RHSA-2007-00…	vendor-advisoryx_refsource_REDHAT
	http://secunia.com/advisories/24419	third-party-advisoryx_refsource_SECUNIA
	http://rhn.redhat.com/errata/RHSA-2007-0089.html	vendor-advisoryx_refsource_REDHAT
	http://www.redhat.com/support/errata/RHSA-2007-00…	vendor-advisoryx_refsource_REDHAT
	http://www.securityfocus.com/archive/1/461462/100…	mailing-listx_refsource_BUGTRAQ
	http://support.avaya.com/elmodocs2/security/ASA-2…	x_refsource_CONFIRM
	http://www.redhat.com/support/errata/RHSA-2007-00…	vendor-advisoryx_refsource_REDHAT
	http://osvdb.org/32764	vdb-entryx_refsource_OSVDB
	ftp://patches.sgi.com/support/free/security/advis…	vendor-advisoryx_refsource_SGI
	http://www.php.net/ChangeLog-5.php#5.2.1	x_refsource_CONFIRM
	http://www.mandriva.com/security/advisories?name=…	vendor-advisoryx_refsource_MANDRIVA
	http://osvdb.org/32765	vdb-entryx_refsource_OSVDB
	http://www.ubuntu.com/usn/usn-424-1	vendor-advisoryx_refsource_UBUNTU
	http://www.redhat.com/support/errata/RHSA-2007-00…	vendor-advisoryx_refsource_REDHAT
	http://secunia.com/advisories/24322	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/24236	third-party-advisoryx_refsource_SECUNIA
	http://www.vupen.com/english/advisories/2007/0546	vdb-entryx_refsource_VUPEN

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T12:34:21.303Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "DSA-1264",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.us.debian.org/security/2007/dsa-1264"
          },
          {
            "name": "24295",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24295"
          },
          {
            "name": "2007-0009",
            "tags": [
              "vendor-advisory",
              "x_refsource_TRUSTIX",
              "x_transferred"
            ],
            "url": "http://www.trustix.org/errata/2007/0009/"
          },
          {
            "name": "OpenPKG-SA-2007.010",
            "tags": [
              "vendor-advisory",
              "x_refsource_OPENPKG",
              "x_transferred"
            ],
            "url": "http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html"
          },
          {
            "name": "24195",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24195"
          },
          {
            "name": "oval:org.mitre.oval:def:9722",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9722"
          },
          {
            "name": "1017671",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1017671"
          },
          {
            "name": "24606",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24606"
          },
          {
            "name": "24642",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24642"
          },
          {
            "name": "24217",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24217"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-101.htm"
          },
          {
            "name": "24248",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24248"
          },
          {
            "name": "24514",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24514"
          },
          {
            "name": "22496",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/22496"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://issues.rpath.com/browse/RPL-1088"
          },
          {
            "name": "24284",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24284"
          },
          {
            "name": "USN-424-2",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/usn-424-2"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.php.net/releases/5_2_1.php"
          },
          {
            "name": "GLSA-200703-21",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://security.gentoo.org/glsa/glsa-200703-21.xml"
          },
          {
            "name": "24432",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24432"
          },
          {
            "name": "24421",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24421"
          },
          {
            "name": "24089",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24089"
          },
          {
            "name": "SUSE-SA:2007:020",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html"
          },
          {
            "name": "RHSA-2007:0076",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2007-0076.html"
          },
          {
            "name": "24419",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24419"
          },
          {
            "name": "RHSA-2007:0089",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2007-0089.html"
          },
          {
            "name": "RHSA-2007:0088",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2007-0088.html"
          },
          {
            "name": "20070227 rPSA-2007-0043-1 php php-mysql php-pgsql",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/461462/100/0/threaded"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-136.htm"
          },
          {
            "name": "RHSA-2007:0082",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2007-0082.html"
          },
          {
            "name": "32764",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/32764"
          },
          {
            "name": "20070201-01-P",
            "tags": [
              "vendor-advisory",
              "x_refsource_SGI",
              "x_transferred"
            ],
            "url": "ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.php.net/ChangeLog-5.php#5.2.1"
          },
          {
            "name": "MDKSA-2007:048",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:048"
          },
          {
            "name": "32765",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/32765"
          },
          {
            "name": "USN-424-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/usn-424-1"
          },
          {
            "name": "RHSA-2007:0081",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2007-0081.html"
          },
          {
            "name": "24322",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24322"
          },
          {
            "name": "24236",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24236"
          },
          {
            "name": "ADV-2007-0546",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2007/0546"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-02-13T05:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple format string vulnerabilities in PHP before 5.2.1 might allow attackers to execute arbitrary code via format string specifiers to (1) all of the *print functions on 64-bit systems, and (2) the odbc_result_all function."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-16T18:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "DSA-1264",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.us.debian.org/security/2007/dsa-1264"
        },
        {
          "name": "24295",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24295"
        },
        {
          "name": "2007-0009",
          "tags": [
            "vendor-advisory",
            "x_refsource_TRUSTIX"
          ],
          "url": "http://www.trustix.org/errata/2007/0009/"
        },
        {
          "name": "OpenPKG-SA-2007.010",
          "tags": [
            "vendor-advisory",
            "x_refsource_OPENPKG"
          ],
          "url": "http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html"
        },
        {
          "name": "24195",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24195"
        },
        {
          "name": "oval:org.mitre.oval:def:9722",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9722"
        },
        {
          "name": "1017671",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1017671"
        },
        {
          "name": "24606",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24606"
        },
        {
          "name": "24642",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24642"
        },
        {
          "name": "24217",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24217"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-101.htm"
        },
        {
          "name": "24248",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24248"
        },
        {
          "name": "24514",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24514"
        },
        {
          "name": "22496",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/22496"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://issues.rpath.com/browse/RPL-1088"
        },
        {
          "name": "24284",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24284"
        },
        {
          "name": "USN-424-2",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/usn-424-2"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.php.net/releases/5_2_1.php"
        },
        {
          "name": "GLSA-200703-21",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://security.gentoo.org/glsa/glsa-200703-21.xml"
        },
        {
          "name": "24432",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24432"
        },
        {
          "name": "24421",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24421"
        },
        {
          "name": "24089",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24089"
        },
        {
          "name": "SUSE-SA:2007:020",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html"
        },
        {
          "name": "RHSA-2007:0076",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2007-0076.html"
        },
        {
          "name": "24419",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24419"
        },
        {
          "name": "RHSA-2007:0089",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2007-0089.html"
        },
        {
          "name": "RHSA-2007:0088",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2007-0088.html"
        },
        {
          "name": "20070227 rPSA-2007-0043-1 php php-mysql php-pgsql",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/461462/100/0/threaded"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-136.htm"
        },
        {
          "name": "RHSA-2007:0082",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2007-0082.html"
        },
        {
          "name": "32764",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/32764"
        },
        {
          "name": "20070201-01-P",
          "tags": [
            "vendor-advisory",
            "x_refsource_SGI"
          ],
          "url": "ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.php.net/ChangeLog-5.php#5.2.1"
        },
        {
          "name": "MDKSA-2007:048",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:048"
        },
        {
          "name": "32765",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/32765"
        },
        {
          "name": "USN-424-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/usn-424-1"
        },
        {
          "name": "RHSA-2007:0081",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2007-0081.html"
        },
        {
          "name": "24322",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24322"
        },
        {
          "name": "24236",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24236"
        },
        {
          "name": "ADV-2007-0546",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2007/0546"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-0909",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple format string vulnerabilities in PHP before 5.2.1 might allow attackers to execute arbitrary code via format string specifiers to (1) all of the *print functions on 64-bit systems, and (2) the odbc_result_all function."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "DSA-1264",
              "refsource": "DEBIAN",
              "url": "http://www.us.debian.org/security/2007/dsa-1264"
            },
            {
              "name": "24295",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24295"
            },
            {
              "name": "2007-0009",
              "refsource": "TRUSTIX",
              "url": "http://www.trustix.org/errata/2007/0009/"
            },
            {
              "name": "OpenPKG-SA-2007.010",
              "refsource": "OPENPKG",
              "url": "http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html"
            },
            {
              "name": "24195",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24195"
            },
            {
              "name": "oval:org.mitre.oval:def:9722",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9722"
            },
            {
              "name": "1017671",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1017671"
            },
            {
              "name": "24606",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24606"
            },
            {
              "name": "24642",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24642"
            },
            {
              "name": "24217",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24217"
            },
            {
              "name": "http://support.avaya.com/elmodocs2/security/ASA-2007-101.htm",
              "refsource": "CONFIRM",
              "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-101.htm"
            },
            {
              "name": "24248",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24248"
            },
            {
              "name": "24514",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24514"
            },
            {
              "name": "22496",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/22496"
            },
            {
              "name": "https://issues.rpath.com/browse/RPL-1088",
              "refsource": "CONFIRM",
              "url": "https://issues.rpath.com/browse/RPL-1088"
            },
            {
              "name": "24284",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24284"
            },
            {
              "name": "USN-424-2",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/usn-424-2"
            },
            {
              "name": "http://www.php.net/releases/5_2_1.php",
              "refsource": "CONFIRM",
              "url": "http://www.php.net/releases/5_2_1.php"
            },
            {
              "name": "GLSA-200703-21",
              "refsource": "GENTOO",
              "url": "http://security.gentoo.org/glsa/glsa-200703-21.xml"
            },
            {
              "name": "24432",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24432"
            },
            {
              "name": "24421",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24421"
            },
            {
              "name": "24089",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24089"
            },
            {
              "name": "SUSE-SA:2007:020",
              "refsource": "SUSE",
              "url": "http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html"
            },
            {
              "name": "RHSA-2007:0076",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2007-0076.html"
            },
            {
              "name": "24419",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24419"
            },
            {
              "name": "RHSA-2007:0089",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2007-0089.html"
            },
            {
              "name": "RHSA-2007:0088",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2007-0088.html"
            },
            {
              "name": "20070227 rPSA-2007-0043-1 php php-mysql php-pgsql",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/461462/100/0/threaded"
            },
            {
              "name": "http://support.avaya.com/elmodocs2/security/ASA-2007-136.htm",
              "refsource": "CONFIRM",
              "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-136.htm"
            },
            {
              "name": "RHSA-2007:0082",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2007-0082.html"
            },
            {
              "name": "32764",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/32764"
            },
            {
              "name": "20070201-01-P",
              "refsource": "SGI",
              "url": "ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc"
            },
            {
              "name": "http://www.php.net/ChangeLog-5.php#5.2.1",
              "refsource": "CONFIRM",
              "url": "http://www.php.net/ChangeLog-5.php#5.2.1"
            },
            {
              "name": "MDKSA-2007:048",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:048"
            },
            {
              "name": "32765",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/32765"
            },
            {
              "name": "USN-424-1",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/usn-424-1"
            },
            {
              "name": "RHSA-2007:0081",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2007-0081.html"
            },
            {
              "name": "24322",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24322"
            },
            {
              "name": "24236",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24236"
            },
            {
              "name": "ADV-2007-0546",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2007/0546"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2007-0909",
    "datePublished": "2007-02-14T04:00:00.000Z",
    "dateReserved": "2007-02-13T05:00:00.000Z",
    "dateUpdated": "2024-08-07T12:34:21.303Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CERTA-2007-AVI-076

Vulnerability from certfr_avis - Published: 2007-02-09 - Updated: 2007-03-15

Plusieurs vulnérabilités dans php permettraient à un utilisateur distant de contourner la politique de sécurité ou de porter atteinte à la confidentialité des données.

Description

Plusieurs vulnérabilités de type débordement de mémoire dans l'interpréteur php ont été identifiées. Elles permettraient de contourner la politique de sécurité et de porter atteinte à la confidentialité des données du système mettant en œuvre cet interpréteur php vulnérable.

Solution

La version 5.2.1 de php corrige le problème :

http://www.php.net/downloads.php

php versions 5.2.0 et antérieures.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Liste des correctifs apportés à la version 5.2.1 de php	None	vendor-advisory
Bulletin Debian DSA-1264-1 du 07 mars 2007 :	-	other
Bulletin Fedora Core 5 Fedora-2007-287 du 26 février 2007 :	-	other
Bulletin Fedora Core 6 Fedora-2007-261 du 20 février 2007 :	-	other
Bulletin Redhat RHSA-2007:0076-3 du 19 février 2007 :	-	other
Bulletin Ubuntu USN-424-1 du 21 février 2007 :	-	other
Bulletin Mandriva MDKSA-2007:048 du 22 février 2007 :	-	other
Bulletin Redhat RHSA-2007:0081-2 du 21 février 2007 :	-	other
Bulletin de sécurité SuSE SUSE-SA:2007:00 :	-	other
Bulletin Ubuntu USN-424-2 du 08 mars 2007 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cTT\u003ephp\u003c/TT\u003e versions 5.2.0 et  ant\u00e9rieures.",
  "content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s de type d\u00e9bordement de m\u00e9moire dans\nl\u0027interpr\u00e9teur php ont \u00e9t\u00e9 identifi\u00e9es. Elles permettraient de\ncontourner la politique de s\u00e9curit\u00e9 et de porter atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es du syst\u00e8me mettant en \u0153uvre cet interpr\u00e9teur\nphp vuln\u00e9rable.\n\n## Solution\n\nLa version 5.2.1 de php corrige le probl\u00e8me :\n\n    http://www.php.net/downloads.php\n",
  "cves": [
    {
      "name": "CVE-2007-0988",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0988"
    },
    {
      "name": "CVE-2007-0905",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0905"
    },
    {
      "name": "CVE-2007-0907",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0907"
    },
    {
      "name": "CVE-2007-0906",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0906"
    },
    {
      "name": "CVE-2007-0909",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0909"
    },
    {
      "name": "CVE-2007-0910",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0910"
    },
    {
      "name": "CVE-2007-0908",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0908"
    }
  ],
  "initial_release_date": "2007-02-09T00:00:00",
  "last_revision_date": "2007-03-15T00:00:00",
  "links": [
    {
      "title": "Bulletin Debian DSA-1264-1 du 07 mars 2007 :",
      "url": "http://www.debian.org/security/2007/dsa-1264"
    },
    {
      "title": "Bulletin Fedora Core 5 Fedora-2007-287 du 26 f\u00e9vrier 2007 :",
      "url": "http://fedoranews.org/cms/node/2720"
    },
    {
      "title": "Bulletin Fedora Core 6 Fedora-2007-261 du 20 f\u00e9vrier 2007 :",
      "url": "http://fedoranews.org/cms/node/2681"
    },
    {
      "title": "Bulletin Redhat RHSA-2007:0076-3 du 19 f\u00e9vrier 2007 :",
      "url": "http://rhn.redhat.com/errata/RHSA-2007-0076.html"
    },
    {
      "title": "Bulletin Ubuntu USN-424-1 du 21 f\u00e9vrier 2007 :",
      "url": "https://lists.ubuntu.com/archives/ubuntu-security-announce/2007-February/000487.html"
    },
    {
      "title": "Bulletin Mandriva MDKSA-2007:048 du 22 f\u00e9vrier 2007 :",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:048"
    },
    {
      "title": "Bulletin Redhat RHSA-2007:0081-2 du 21 f\u00e9vrier 2007 :",
      "url": "http://rhn.redhat.com/errata/RHSA-2007-0081.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SuSE SUSE-SA:2007:00 :",
      "url": "http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html"
    },
    {
      "title": "Bulletin Ubuntu USN-424-2 du 08 mars 2007 :",
      "url": "https://lists.ubuntu.com/archives/ubuntu-security-announce/2007-March/000497.html"
    }
  ],
  "reference": "CERTA-2007-AVI-076",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-02-09T00:00:00.000000"
    },
    {
      "description": "ajout des r\u00e9f\u00e9rences CVE et Redhat.",
      "revision_date": "2007-02-21T00:00:00.000000"
    },
    {
      "description": "ajout des r\u00e9f\u00e9rences Debian, Fedora, Mandriva et Redhat.",
      "revision_date": "2007-03-14T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence SuSE.",
      "revision_date": "2007-03-15T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "Plusieurs vuln\u00e9rabilit\u00e9s dans php permettraient \u00e0 un utilisateur distant\nde contourner la politique de s\u00e9curit\u00e9 ou de porter atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans php",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Liste des correctifs apport\u00e9s \u00e0 la version 5.2.1 de php",
      "url": "http://www.php.net/releases/5_2_1.php"
    }
  ]
}

CERTA-2007-AVI-144

Vulnerability from certfr_avis - Published: 2007-03-27 - Updated: 2007-03-27

Plusieurs vulnérabilités découvertes dans PHP (PHP : Hypertext Processor) permettent à un utilisateur distant malintentionné de réaliser de nombreuses actions malveillantes sur le système vulnérable.

Ces vulnérabilités peuvent être exploitées à distance afin de contourner la politique de sécurité, d'exécuter du code arbitraire, de provoquer un déni de service en consommant de façon excessive les ressources du processeur et de porter atteinte à la confidentialité et à l'intégrité des données du système présentes en mémoire.

Solution

Appliquer les mises à jour de sécurité PHP en passant à la version 4.4.5 ou 5.2.1 disponibles aux adresses suivantes :

http://www.php.net/releases/4_4_5.php

http://www.php.net/releases/5_2_1.php

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	PHP	PHP	PHP antérieur à la version 4.4.5 ;
	PHP	PHP	PHP antérieur à la version 5.2.1.

References

Title

Publication Time

Tags

Bulletin de sécurité Gentoo GLSA-200703-21 du 20 mars 2007	None	vendor-advisory
Bulletin de sécurité RedHat RHSA-2007:0076 du 19 février 2007 :	-	other
Bulletin de sécurité Debian DSA 1264 du 07 mars 2007 :	-	other
Bulletin de sécurité RedHat RHSA-2007:0089 du 26 février 2007 :	-	other
Bulletin de sécurité Ubuntu USN-431-1 du 07 mars 2007 :	-	other
Mise à jour de sécurité PHP version 4.4.5 :	-	other
Bulletin de sécurité Mandriva MDKSA-2007:048 du 22 février 2007 :	-	other
Bulletin de sécurité Avaya ASA-2007-0076 du 06 mars 2007 :	-	other
Bulletin de sécurité SuSE SUSE-SA:2007:020 du 15 mars 2007 :	-	other
Bulletin de sécurité Avaya ASA-2007-0088 du 26 mars 2007 :	-	other
Mise à jour de sécurité PHP version 5.2.1 :	-	other
Bulletin de sécurité Ubuntu USN-423-1 du 20 février 2007 :	-	other
Bulletin de sécurité RedHat RHSA-2007:0081 du 21 février 2007 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "PHP ant\u00e9rieur \u00e0 la version 4.4.5 ;",
      "product": {
        "name": "PHP",
        "vendor": {
          "name": "PHP",
          "scada": false
        }
      }
    },
    {
      "description": "PHP ant\u00e9rieur \u00e0 la version 5.2.1.",
      "product": {
        "name": "PHP",
        "vendor": {
          "name": "PHP",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nAppliquer les mises \u00e0 jour de s\u00e9curit\u00e9 PHP en passant \u00e0 la version 4.4.5\nou 5.2.1 disponibles aux adresses suivantes :\n\n    http://www.php.net/releases/4_4_5.php\n\n    http://www.php.net/releases/5_2_1.php\n\n  \n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2007-0988",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0988"
    },
    {
      "name": "CVE-2007-1380",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1380"
    },
    {
      "name": "CVE-2007-0905",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0905"
    },
    {
      "name": "CVE-2007-1452",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1452"
    },
    {
      "name": "CVE-2007-1376",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1376"
    },
    {
      "name": "CVE-2007-1375",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1375"
    },
    {
      "name": "CVE-2007-0907",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0907"
    },
    {
      "name": "CVE-2007-0906",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0906"
    },
    {
      "name": "CVE-2007-1453",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1453"
    },
    {
      "name": "CVE-2007-0909",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0909"
    },
    {
      "name": "CVE-2007-0910",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0910"
    },
    {
      "name": "CVE-2007-0908",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0908"
    },
    {
      "name": "CVE-2007-1383",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1383"
    },
    {
      "name": "CVE-2007-1454",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1454"
    },
    {
      "name": "CVE-2007-1286",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1286"
    }
  ],
  "initial_release_date": "2007-03-27T00:00:00",
  "last_revision_date": "2007-03-27T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2007:0076 du 19 f\u00e9vrier    2007 :",
      "url": "http://rhn.redhat.com/errata/RHSA-2007-0076.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Debian DSA 1264 du 07 mars 2007 :",
      "url": "http://www.debian.org/security/2007/dsa-1264"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2007:0089 du 26 f\u00e9vrier    2007 :",
      "url": "http://rhn.redhat.com/errata/RHSA-2007-0089.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-431-1 du 07 mars 2007 :",
      "url": "http://www.ubuntulinux.org/usn/usn-431-1"
    },
    {
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 PHP version 4.4.5 :",
      "url": "http://www.php.net/releases/4_4_5.php"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2007:048 du 22 f\u00e9vrier    2007 :",
      "url": "http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2007:048"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Avaya ASA-2007-0076 du 06 mars 2007 :",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-0076.htm"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SuSE SUSE-SA:2007:020 du 15 mars 2007    :",
      "url": "http://lists.suse.com/archive/archive/suse-security-announce/2007-Mar/0003.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Avaya ASA-2007-0088 du 26 mars 2007 :",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-0088.htm"
    },
    {
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 PHP version 5.2.1 :",
      "url": "http://www.php.net/releases/5_2_1.php"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-423-1 du 20 f\u00e9vrier 2007 :",
      "url": "http://www.ubuntulinux.org/usn/usn-423-1"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2007:0081 du 21 f\u00e9vrier    2007 :",
      "url": "http://rhn.redhat.com/errata/RHSA-2007-0081.html"
    }
  ],
  "reference": "CERTA-2007-AVI-144",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-03-27T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "Plusieurs vuln\u00e9rabilit\u00e9s d\u00e9couvertes dans PHP (PHP : Hypertext\nProcessor) permettent \u00e0 un utilisateur distant malintentionn\u00e9 de\nr\u00e9aliser de nombreuses actions malveillantes sur le syst\u00e8me vuln\u00e9rable.\n\n  \n\nCes vuln\u00e9rabilit\u00e9s peuvent \u00eatre exploit\u00e9es \u00e0 distance afin de contourner\nla politique de s\u00e9curit\u00e9, d\u0027ex\u00e9cuter du code arbitraire, de provoquer un\nd\u00e9ni de service en consommant de fa\u00e7on excessive les ressources du\nprocesseur et de porter atteinte \u00e0 la confidentialit\u00e9 et \u00e0 l\u0027int\u00e9grit\u00e9\ndes donn\u00e9es du syst\u00e8me pr\u00e9sentes en m\u00e9moire.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans PHP",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Gentoo GLSA-200703-21 du 20 mars 2007",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200703-21.xml"
    }
  ]
}

GHSA-57Q9-CW6P-2QRG

Vulnerability from github – Published: 2022-05-03 03:18 – Updated: 2022-05-03 03:18

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2007-0909"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2007-02-13T23:28:00Z",
    "severity": "HIGH"
  },
  "details": "Multiple format string vulnerabilities in PHP before 5.2.1 might allow attackers to execute arbitrary code via format string specifiers to (1) all of the *print functions on 64-bit systems, and (2) the odbc_result_all function.",
  "id": "GHSA-57q9-cw6p-2qrg",
  "modified": "2022-05-03T03:18:00Z",
  "published": "2022-05-03T03:18:00Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-0909"
    },
    {
      "type": "WEB",
      "url": "https://issues.rpath.com/browse/RPL-1088"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9722"
    },
    {
      "type": "WEB",
      "url": "http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html"
    },
    {
      "type": "WEB",
      "url": "http://osvdb.org/32764"
    },
    {
      "type": "WEB",
      "url": "http://osvdb.org/32765"
    },
    {
      "type": "WEB",
      "url": "http://rhn.redhat.com/errata/RHSA-2007-0089.html"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24089"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24195"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24217"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24236"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24248"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24284"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24295"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24322"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24419"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24421"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24432"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24514"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24606"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24642"
    },
    {
      "type": "WEB",
      "url": "http://security.gentoo.org/glsa/glsa-200703-21.xml"
    },
    {
      "type": "WEB",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-101.htm"
    },
    {
      "type": "WEB",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-136.htm"
    },
    {
      "type": "WEB",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:048"
    },
    {
      "type": "WEB",
      "url": "http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html"
    },
    {
      "type": "WEB",
      "url": "http://www.php.net/ChangeLog-5.php#5.2.1"
    },
    {
      "type": "WEB",
      "url": "http://www.php.net/releases/5_2_1.php"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2007-0076.html"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2007-0081.html"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2007-0082.html"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2007-0088.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/461462/100/0/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/22496"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id?1017671"
    },
    {
      "type": "WEB",
      "url": "http://www.trustix.org/errata/2007/0009"
    },
    {
      "type": "WEB",
      "url": "http://www.ubuntu.com/usn/usn-424-1"
    },
    {
      "type": "WEB",
      "url": "http://www.ubuntu.com/usn/usn-424-2"
    },
    {
      "type": "WEB",
      "url": "http://www.us.debian.org/security/2007/dsa-1264"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2007/0546"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

FKIE_CVE-2007-0909

Vulnerability from fkie_nvd - Published: 2007-02-13 23:28 - Updated: 2025-04-09 00:30

Severity ?

Summary

References

	URL	Tags
	cve@mitre.org	ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc
	cve@mitre.org	http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html
	cve@mitre.org	http://osvdb.org/32764
	cve@mitre.org	http://osvdb.org/32765
	cve@mitre.org	http://rhn.redhat.com/errata/RHSA-2007-0089.html
	cve@mitre.org	http://secunia.com/advisories/24089
	cve@mitre.org	http://secunia.com/advisories/24195
	cve@mitre.org	http://secunia.com/advisories/24217
	cve@mitre.org	http://secunia.com/advisories/24236
	cve@mitre.org	http://secunia.com/advisories/24248
	cve@mitre.org	http://secunia.com/advisories/24284
	cve@mitre.org	http://secunia.com/advisories/24295
	cve@mitre.org	http://secunia.com/advisories/24322
	cve@mitre.org	http://secunia.com/advisories/24419
	cve@mitre.org	http://secunia.com/advisories/24421
	cve@mitre.org	http://secunia.com/advisories/24432
	cve@mitre.org	http://secunia.com/advisories/24514
	cve@mitre.org	http://secunia.com/advisories/24606
	cve@mitre.org	http://secunia.com/advisories/24642
	cve@mitre.org	http://security.gentoo.org/glsa/glsa-200703-21.xml
	cve@mitre.org	http://support.avaya.com/elmodocs2/security/ASA-2007-101.htm
	cve@mitre.org	http://support.avaya.com/elmodocs2/security/ASA-2007-136.htm
	cve@mitre.org	http://www.mandriva.com/security/advisories?name=MDKSA-2007:048
	cve@mitre.org	http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html
	cve@mitre.org	http://www.php.net/ChangeLog-5.php#5.2.1
	cve@mitre.org	http://www.php.net/releases/5_2_1.php
	cve@mitre.org	http://www.redhat.com/support/errata/RHSA-2007-0076.html
	cve@mitre.org	http://www.redhat.com/support/errata/RHSA-2007-0081.html
	cve@mitre.org	http://www.redhat.com/support/errata/RHSA-2007-0082.html
	cve@mitre.org	http://www.redhat.com/support/errata/RHSA-2007-0088.html
	cve@mitre.org	http://www.securityfocus.com/archive/1/461462/100/0/threaded
	cve@mitre.org	http://www.securityfocus.com/bid/22496
	cve@mitre.org	http://www.securitytracker.com/id?1017671
	cve@mitre.org	http://www.trustix.org/errata/2007/0009/
	cve@mitre.org	http://www.ubuntu.com/usn/usn-424-1
	cve@mitre.org	http://www.ubuntu.com/usn/usn-424-2
	cve@mitre.org	http://www.us.debian.org/security/2007/dsa-1264
	cve@mitre.org	http://www.vupen.com/english/advisories/2007/0546
	cve@mitre.org	https://issues.rpath.com/browse/RPL-1088
	cve@mitre.org	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9722
	af854a3a-2127-422b-91ae-364da2661108	ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc
	af854a3a-2127-422b-91ae-364da2661108	http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html
	af854a3a-2127-422b-91ae-364da2661108	http://osvdb.org/32764
	af854a3a-2127-422b-91ae-364da2661108	http://osvdb.org/32765
	af854a3a-2127-422b-91ae-364da2661108	http://rhn.redhat.com/errata/RHSA-2007-0089.html
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24089
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24195
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24217
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24236
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24248
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24284
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24295
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24322
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24419
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24421
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24432
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24514
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24606
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24642
	af854a3a-2127-422b-91ae-364da2661108	http://security.gentoo.org/glsa/glsa-200703-21.xml
	af854a3a-2127-422b-91ae-364da2661108	http://support.avaya.com/elmodocs2/security/ASA-2007-101.htm
	af854a3a-2127-422b-91ae-364da2661108	http://support.avaya.com/elmodocs2/security/ASA-2007-136.htm
	af854a3a-2127-422b-91ae-364da2661108	http://www.mandriva.com/security/advisories?name=MDKSA-2007:048
	af854a3a-2127-422b-91ae-364da2661108	http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html
	af854a3a-2127-422b-91ae-364da2661108	http://www.php.net/ChangeLog-5.php#5.2.1
	af854a3a-2127-422b-91ae-364da2661108	http://www.php.net/releases/5_2_1.php
	af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2007-0076.html
	af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2007-0081.html
	af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2007-0082.html
	af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2007-0088.html
	af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/461462/100/0/threaded
	af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/22496
	af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id?1017671
	af854a3a-2127-422b-91ae-364da2661108	http://www.trustix.org/errata/2007/0009/
	af854a3a-2127-422b-91ae-364da2661108	http://www.ubuntu.com/usn/usn-424-1
	af854a3a-2127-422b-91ae-364da2661108	http://www.ubuntu.com/usn/usn-424-2
	af854a3a-2127-422b-91ae-364da2661108	http://www.us.debian.org/security/2007/dsa-1264
	af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2007/0546
	af854a3a-2127-422b-91ae-364da2661108	https://issues.rpath.com/browse/RPL-1088
	af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9722

Impacted products

Vendor	Product	Version
php	php	3.0
php	php	3.0.1
php	php	3.0.2
php	php	3.0.3
php	php	3.0.4
php	php	3.0.5
php	php	3.0.6
php	php	3.0.7
php	php	3.0.8
php	php	3.0.9
php	php	3.0.10
php	php	3.0.11
php	php	3.0.12
php	php	3.0.13
php	php	3.0.14
php	php	3.0.15
php	php	3.0.16
php	php	3.0.17
php	php	3.0.18
php	php	4.0
php	php	4.0.1
php	php	4.0.1
php	php	4.0.1
php	php	4.0.2
php	php	4.0.3
php	php	4.0.3
php	php	4.0.4
php	php	4.0.5
php	php	4.0.6
php	php	4.0.7
php	php	4.0.7
php	php	4.0.7
php	php	4.0.7
php	php	4.1.0
php	php	4.1.1
php	php	4.1.2
php	php	4.2
php	php	4.2.0
php	php	4.2.1
php	php	4.2.2
php	php	4.2.3
php	php	4.3.0
php	php	4.3.1
php	php	4.3.2
php	php	4.3.3
php	php	4.3.4
php	php	4.3.5
php	php	4.3.6
php	php	4.3.7
php	php	4.3.8
php	php	4.3.9
php	php	4.3.10
php	php	4.3.11
php	php	4.4.0
php	php	4.4.1
php	php	4.4.2
php	php	4.4.3
php	php	4.4.4
php	php	5.0
php	php	5.0
php	php	5.0
php	php	5.0.0
php	php	5.0.1
php	php	5.0.2
php	php	5.0.3
php	php	5.0.4
php	php	5.0.5
php	php	5.1.0
php	php	5.1.1
php	php	5.1.2
php	php	5.1.3
php	php	5.1.4
php	php	5.1.5
php	php	5.1.6
php	php	5.2.0
trustix	secure_linux	2.2
trustix	secure_linux	3.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:php:php:3.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "245C601D-0FE7-47E3-8304-6FF45E9567D6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:3.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "691BB8BB-329A-4640-B758-7590C99B5E42",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:3.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "E2BC4CCE-2774-463E-82EA-36CD442D3A7B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:3.0.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "C478024C-2FCD-463F-A75E-E04660AA9DF1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:3.0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "AC9C32F4-5102-4E9B-9F32-B24B65A5ED2F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:3.0.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "A5BD99C0-E875-496E-BE5E-A8DCBD414B5C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:3.0.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "1851ADE5-C70C-46E0-941A-6ADF7DB5C126",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:3.0.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "69DA3BA2-AF53-4C9D-93FA-0317841595B1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:3.0.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB0CFEE5-2274-4BBC-A24A-3A0D13F607FA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:3.0.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "67B59D6A-7EDA-4C34-81D6-C2557C85D164",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:3.0.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "AEBA40B6-8FDF-41AA-8166-F491FF7F3118",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:3.0.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "E74E2B72-A428-4BB3-B6F8-0AF5E487A807",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:3.0.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "1E2F1D82-8E6A-4FBF-9055-A0F395DC17FA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:3.0.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "945FF149-3446-4905-BCA1-C397E3497B58",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:3.0.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "8E446DBD-FEFA-4D22-9C9D-51F61C01E414",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:3.0.15:*:*:*:*:*:*:*",
              "matchCriteriaId": "3C8DE728-78E1-4F9F-BC56-CD9B10E61287",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:3.0.16:*:*:*:*:*:*:*",
              "matchCriteriaId": "80E31CC6-9356-4BB7-9F49-320AAF341E1E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:3.0.17:*:*:*:*:*:*:*",
              "matchCriteriaId": "1BB8AD3A-9181-459A-9AF2-B3FC6BAF6FEC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:3.0.18:*:*:*:*:*:*:*",
              "matchCriteriaId": "4B3E7199-8FB7-4930-9C0A-A36A698940B3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "EDBEC461-D553-41B7-8D85-20B6A933C21C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "78BAA18C-E5A0-4210-B64B-709BBFF31EEC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.0.1:patch1:*:*:*:*:*:*",
              "matchCriteriaId": "419867C6-37BE-43B4-BFE0-6325FEE3807D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.0.1:patch2:*:*:*:*:*:*",
              "matchCriteriaId": "37896E87-95C2-4039-8362-BC03B1C56706",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "13A159B4-B847-47DE-B7F8-89384E6C551B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.0.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "57B59616-A309-40B4-94B1-50A7BC00E35C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.0.3:patch1:*:*:*:*:*:*",
              "matchCriteriaId": "8667FBC6-04B6-40E5-93B3-6C22BEED4B26",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "0F39A1B1-416E-4436-8007-733B66904A14",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.0.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "DD5FC218-3DDB-4981-81C9-6C69F8DA6F4D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.0.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "FC2E5F96-66D2-4F99-A74D-6A2305EE218E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.0.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "2D724D09-0D45-4701-93C9-348301217C8C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.0.7:rc1:*:*:*:*:*:*",
              "matchCriteriaId": "FC6A6F47-5C7C-4F82-B23B-9C959C69B27F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.0.7:rc2:*:*:*:*:*:*",
              "matchCriteriaId": "AE1A4DA6-6181-43A8-B0D8-5A016C3E75FF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.0.7:rc3:*:*:*:*:*:*",
              "matchCriteriaId": "6E36203C-1392-49BB-AE7E-49626963D673",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "6713614A-B14E-4A85-BF89-ED780068FC68",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "FD95F8EB-B428-4B3C-9254-A5DECE03A989",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "069EB7EE-06B9-454F-9007-8DE5DCA33C53",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.2:*:dev:*:*:*:*:*",
              "matchCriteriaId": "BBA861A2-F0CD-4DBB-B43A-4970EB114DA5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "18BF5BE6-09EA-45AD-93BF-2BEF1742534E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "EC1460DF-1687-4314-BF1A-01290B20302D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "470380B0-3982-48FC-871B-C8B43C81900D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.2.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "9FAA7712-10F0-4BB6-BAFB-D0806AFD9DE2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.3.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "63190D9B-7958-4B93-87C6-E7D5A572F6DC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "7AB2E2E8-81D6-4973-AC0F-AA644EE99DD3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.3.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "4AAF4586-74FF-47C6-864B-656FDF3F33D0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.3.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "B14EF0C7-61F2-47A4-B7F8-43FF03C62DCA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.3.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "5245F990-B4A7-4ED8-909D-B8137CE79FAA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.3.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "5652D5B0-68E4-4239-B9B7-599AFCF4C53E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.3.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "57B71BB7-5239-4860-9100-8CABC3992D8C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.3.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "72BD447A-4EED-482C-8F61-48FAD4FCF8BA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.3.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "B3F9DF9D-15E5-4387-ABE3-A7583331A928",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.3.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "11579E5C-D7CF-46EE-B015-5F4185C174E7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.3.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "C69CDE21-2FD4-4529-8F02-8709CF5E3D7E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.3.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "221B9AC4-C63C-4386-B3BD-E4BC102C6124",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "78B7BA75-2A32-4A8E-ADF8-BCB4FC48CB5C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "2BEA491B-77FD-4760-8F6F-3EBC6BD810D9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.4.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "BB25CFBB-347C-479E-8853-F49DD6CBD7D4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.4.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "4D2937B3-D034-400E-84F5-33833CE3764D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:4.4.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "71AEE8B4-FCF8-483B-8D4C-2E80A02E925E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:5.0:rc1:*:*:*:*:*:*",
              "matchCriteriaId": "0F9D7662-A5B6-41D0-B6A1-E5ABC5ABA47F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:5.0:rc2:*:*:*:*:*:*",
              "matchCriteriaId": "E3797AB5-9E49-4251-A212-B6E5D9996764",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:5.0:rc3:*:*:*:*:*:*",
              "matchCriteriaId": "D61D9CE9-F7A3-4F52-9D4E-B2473804ECB7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:5.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "7007E77F-60EF-44D8-9676-15B59DF1325F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:5.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "17437AED-816A-4CCF-96DE-8C3D0CC8DB2B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:5.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "74E7AE59-1CB0-4300-BBE0-109F909789EF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:5.0.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "9222821E-370F-4616-B787-CC22C2F4E7CD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:5.0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "9809449F-9A76-4318-B233-B4C2950A6EA9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:5.0.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "0AA962D4-A4EC-4DC3-B8A9-D10941B92781",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:5.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "F8CDFEF9-C367-4800-8A2F-375C261FAE55",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:5.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "16E43B88-1563-4EFD-9267-AE3E8C35D67A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:5.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "11E5715F-A8BC-49EF-836B-BB78E1BC0790",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:5.1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "5FA68843-158E-463E-B68A-1ACF041C4E10",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:5.1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "1874F637-77E2-4C4A-BF92-AEE96A60BFB0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:5.1.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "9592B32E-55CD-42D0-901E-8319823BC820",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:5.1.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "A9BF34B5-F74C-4D56-9841-42452D60CB87",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:5.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "CD02D837-FD28-4E0F-93F8-25E8D1C84A99",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:trustix:secure_linux:2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "5AB70F82-52BB-4D0D-9A24-9AF67278466D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:trustix:secure_linux:3.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "100A2456-BF20-4461-8DC9-C61889322B29",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Multiple format string vulnerabilities in PHP before 5.2.1 might allow attackers to execute arbitrary code via format string specifiers to (1) all of the *print functions on 64-bit systems, and (2) the odbc_result_all function."
    },
    {
      "lang": "es",
      "value": "M\u00faltiples vulnerabilidades de cadena de formato en PHP anterior a 5.2.1 podr\u00eda permitir a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n mediante especificadores de cadena de formato a (1) todas las funciones *print en sistemas de 64 bits, y a (2) la funci\u00f3n odbc_result_all."
    }
  ],
  "id": "CVE-2007-0909",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": true,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2007-02-13T23:28:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://osvdb.org/32764"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://osvdb.org/32765"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://rhn.redhat.com/errata/RHSA-2007-0089.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24089"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24195"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24217"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24236"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24248"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24284"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24295"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24322"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24419"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24421"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24432"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24514"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24606"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24642"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://security.gentoo.org/glsa/glsa-200703-21.xml"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-101.htm"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-136.htm"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:048"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.php.net/ChangeLog-5.php#5.2.1"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.php.net/releases/5_2_1.php"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.redhat.com/support/errata/RHSA-2007-0076.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.redhat.com/support/errata/RHSA-2007-0081.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.redhat.com/support/errata/RHSA-2007-0082.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.redhat.com/support/errata/RHSA-2007-0088.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/461462/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/22496"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securitytracker.com/id?1017671"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.trustix.org/errata/2007/0009/"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.ubuntu.com/usn/usn-424-1"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.ubuntu.com/usn/usn-424-2"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.us.debian.org/security/2007/dsa-1264"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2007/0546"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://issues.rpath.com/browse/RPL-1088"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9722"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/32764"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/32765"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://rhn.redhat.com/errata/RHSA-2007-0089.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24089"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24195"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24217"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24236"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24248"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24284"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24295"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24322"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24419"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24421"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24432"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24514"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24606"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24642"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://security.gentoo.org/glsa/glsa-200703-21.xml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-101.htm"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-136.htm"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:048"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.php.net/ChangeLog-5.php#5.2.1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.php.net/releases/5_2_1.php"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/support/errata/RHSA-2007-0076.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/support/errata/RHSA-2007-0081.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/support/errata/RHSA-2007-0082.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/support/errata/RHSA-2007-0088.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/461462/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/22496"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1017671"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.trustix.org/errata/2007/0009/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.ubuntu.com/usn/usn-424-1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.ubuntu.com/usn/usn-424-2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.us.debian.org/security/2007/dsa-1264"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2007/0546"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://issues.rpath.com/browse/RPL-1088"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9722"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GSD-2007-0909

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Aliases

CVE-2007-0909

Aliases

CVE-2007-0909

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2007-0909",
    "description": "Multiple format string vulnerabilities in PHP before 5.2.1 might allow attackers to execute arbitrary code via format string specifiers to (1) all of the *print functions on 64-bit systems, and (2) the odbc_result_all function.",
    "id": "GSD-2007-0909",
    "references": [
      "https://www.suse.com/security/cve/CVE-2007-0909.html",
      "https://www.debian.org/security/2007/dsa-1264",
      "https://access.redhat.com/errata/RHSA-2007:0089",
      "https://access.redhat.com/errata/RHSA-2007:0088",
      "https://access.redhat.com/errata/RHSA-2007:0082",
      "https://access.redhat.com/errata/RHSA-2007:0081",
      "https://access.redhat.com/errata/RHSA-2007:0076",
      "https://linux.oracle.com/cve/CVE-2007-0909.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2007-0909"
      ],
      "details": "Multiple format string vulnerabilities in PHP before 5.2.1 might allow attackers to execute arbitrary code via format string specifiers to (1) all of the *print functions on 64-bit systems, and (2) the odbc_result_all function.",
      "id": "GSD-2007-0909",
      "modified": "2023-12-13T01:21:35.388065Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2007-0909",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Multiple format string vulnerabilities in PHP before 5.2.1 might allow attackers to execute arbitrary code via format string specifiers to (1) all of the *print functions on 64-bit systems, and (2) the odbc_result_all function."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "DSA-1264",
            "refsource": "DEBIAN",
            "url": "http://www.us.debian.org/security/2007/dsa-1264"
          },
          {
            "name": "24295",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24295"
          },
          {
            "name": "2007-0009",
            "refsource": "TRUSTIX",
            "url": "http://www.trustix.org/errata/2007/0009/"
          },
          {
            "name": "OpenPKG-SA-2007.010",
            "refsource": "OPENPKG",
            "url": "http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html"
          },
          {
            "name": "24195",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24195"
          },
          {
            "name": "oval:org.mitre.oval:def:9722",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9722"
          },
          {
            "name": "1017671",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id?1017671"
          },
          {
            "name": "24606",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24606"
          },
          {
            "name": "24642",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24642"
          },
          {
            "name": "24217",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24217"
          },
          {
            "name": "http://support.avaya.com/elmodocs2/security/ASA-2007-101.htm",
            "refsource": "CONFIRM",
            "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-101.htm"
          },
          {
            "name": "24248",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24248"
          },
          {
            "name": "24514",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24514"
          },
          {
            "name": "22496",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/22496"
          },
          {
            "name": "https://issues.rpath.com/browse/RPL-1088",
            "refsource": "CONFIRM",
            "url": "https://issues.rpath.com/browse/RPL-1088"
          },
          {
            "name": "24284",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24284"
          },
          {
            "name": "USN-424-2",
            "refsource": "UBUNTU",
            "url": "http://www.ubuntu.com/usn/usn-424-2"
          },
          {
            "name": "http://www.php.net/releases/5_2_1.php",
            "refsource": "CONFIRM",
            "url": "http://www.php.net/releases/5_2_1.php"
          },
          {
            "name": "GLSA-200703-21",
            "refsource": "GENTOO",
            "url": "http://security.gentoo.org/glsa/glsa-200703-21.xml"
          },
          {
            "name": "24432",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24432"
          },
          {
            "name": "24421",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24421"
          },
          {
            "name": "24089",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24089"
          },
          {
            "name": "SUSE-SA:2007:020",
            "refsource": "SUSE",
            "url": "http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html"
          },
          {
            "name": "RHSA-2007:0076",
            "refsource": "REDHAT",
            "url": "http://www.redhat.com/support/errata/RHSA-2007-0076.html"
          },
          {
            "name": "24419",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24419"
          },
          {
            "name": "RHSA-2007:0089",
            "refsource": "REDHAT",
            "url": "http://rhn.redhat.com/errata/RHSA-2007-0089.html"
          },
          {
            "name": "RHSA-2007:0088",
            "refsource": "REDHAT",
            "url": "http://www.redhat.com/support/errata/RHSA-2007-0088.html"
          },
          {
            "name": "20070227 rPSA-2007-0043-1 php php-mysql php-pgsql",
            "refsource": "BUGTRAQ",
            "url": "http://www.securityfocus.com/archive/1/461462/100/0/threaded"
          },
          {
            "name": "http://support.avaya.com/elmodocs2/security/ASA-2007-136.htm",
            "refsource": "CONFIRM",
            "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-136.htm"
          },
          {
            "name": "RHSA-2007:0082",
            "refsource": "REDHAT",
            "url": "http://www.redhat.com/support/errata/RHSA-2007-0082.html"
          },
          {
            "name": "32764",
            "refsource": "OSVDB",
            "url": "http://osvdb.org/32764"
          },
          {
            "name": "20070201-01-P",
            "refsource": "SGI",
            "url": "ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc"
          },
          {
            "name": "http://www.php.net/ChangeLog-5.php#5.2.1",
            "refsource": "CONFIRM",
            "url": "http://www.php.net/ChangeLog-5.php#5.2.1"
          },
          {
            "name": "MDKSA-2007:048",
            "refsource": "MANDRIVA",
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:048"
          },
          {
            "name": "32765",
            "refsource": "OSVDB",
            "url": "http://osvdb.org/32765"
          },
          {
            "name": "USN-424-1",
            "refsource": "UBUNTU",
            "url": "http://www.ubuntu.com/usn/usn-424-1"
          },
          {
            "name": "RHSA-2007:0081",
            "refsource": "REDHAT",
            "url": "http://www.redhat.com/support/errata/RHSA-2007-0081.html"
          },
          {
            "name": "24322",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24322"
          },
          {
            "name": "24236",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24236"
          },
          {
            "name": "ADV-2007-0546",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2007/0546"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:php:php:3.0.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:3.0.10:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:3.0.17:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:3.0.18:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:3.0.9:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.0.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.0.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.1.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.3.10:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.3.11:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.3.8:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.3.9:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:5.0.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:5.0.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:5.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:5.1.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:3.0.11:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:3.0.12:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:3.0.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:3.0.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.0.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.0.1:patch1:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.0.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.0.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.2.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.2.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.3.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.3.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.4.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.4.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:5.0.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:5.0.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:5.0.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:5.1.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:5.1.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:3.0.13:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:3.0.14:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:3.0.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:3.0.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:3.0.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.0.1:patch2:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.0.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.0.7:rc1:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.0.7:rc2:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.2.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.2.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.2:*:dev:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.3.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.3.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.4.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.4.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:5.0:rc1:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:5.0:rc2:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:5.1.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:5.1.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:3.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:3.0.15:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:3.0.16:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:3.0.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:3.0.8:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.0.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.0.3:patch1:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.0.7:rc3:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.3.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.3.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.3.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.3.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:4.4.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:5.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:5.0:rc3:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:5.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:php:php:5.2.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:trustix:secure_linux:2.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:trustix:secure_linux:3.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-0909"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Multiple format string vulnerabilities in PHP before 5.2.1 might allow attackers to execute arbitrary code via format string specifiers to (1) all of the *print functions on 64-bit systems, and (2) the odbc_result_all function."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.php.net/ChangeLog-5.php#5.2.1",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www.php.net/ChangeLog-5.php#5.2.1"
            },
            {
              "name": "http://www.php.net/releases/5_2_1.php",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www.php.net/releases/5_2_1.php"
            },
            {
              "name": "22496",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/22496"
            },
            {
              "name": "24089",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24089"
            },
            {
              "name": "https://issues.rpath.com/browse/RPL-1088",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "https://issues.rpath.com/browse/RPL-1088"
            },
            {
              "name": "http://support.avaya.com/elmodocs2/security/ASA-2007-101.htm",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-101.htm"
            },
            {
              "name": "DSA-1264",
              "refsource": "DEBIAN",
              "tags": [],
              "url": "http://www.us.debian.org/security/2007/dsa-1264"
            },
            {
              "name": "GLSA-200703-21",
              "refsource": "GENTOO",
              "tags": [],
              "url": "http://security.gentoo.org/glsa/glsa-200703-21.xml"
            },
            {
              "name": "OpenPKG-SA-2007.010",
              "refsource": "OPENPKG",
              "tags": [],
              "url": "http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html"
            },
            {
              "name": "RHSA-2007:0076",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://www.redhat.com/support/errata/RHSA-2007-0076.html"
            },
            {
              "name": "RHSA-2007:0081",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://www.redhat.com/support/errata/RHSA-2007-0081.html"
            },
            {
              "name": "RHSA-2007:0089",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://rhn.redhat.com/errata/RHSA-2007-0089.html"
            },
            {
              "name": "RHSA-2007:0088",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://www.redhat.com/support/errata/RHSA-2007-0088.html"
            },
            {
              "name": "RHSA-2007:0082",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://www.redhat.com/support/errata/RHSA-2007-0082.html"
            },
            {
              "name": "SUSE-SA:2007:020",
              "refsource": "SUSE",
              "tags": [],
              "url": "http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html"
            },
            {
              "name": "USN-424-1",
              "refsource": "UBUNTU",
              "tags": [],
              "url": "http://www.ubuntu.com/usn/usn-424-1"
            },
            {
              "name": "USN-424-2",
              "refsource": "UBUNTU",
              "tags": [],
              "url": "http://www.ubuntu.com/usn/usn-424-2"
            },
            {
              "name": "1017671",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://www.securitytracker.com/id?1017671"
            },
            {
              "name": "24195",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24195"
            },
            {
              "name": "24217",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24217"
            },
            {
              "name": "24248",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24248"
            },
            {
              "name": "24236",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24236"
            },
            {
              "name": "24295",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24295"
            },
            {
              "name": "24322",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24322"
            },
            {
              "name": "24432",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24432"
            },
            {
              "name": "24421",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24421"
            },
            {
              "name": "24514",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24514"
            },
            {
              "name": "24606",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24606"
            },
            {
              "name": "http://support.avaya.com/elmodocs2/security/ASA-2007-136.htm",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-136.htm"
            },
            {
              "name": "24642",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24642"
            },
            {
              "name": "MDKSA-2007:048",
              "refsource": "MANDRIVA",
              "tags": [],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:048"
            },
            {
              "name": "20070201-01-P",
              "refsource": "SGI",
              "tags": [],
              "url": "ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc"
            },
            {
              "name": "2007-0009",
              "refsource": "TRUSTIX",
              "tags": [],
              "url": "http://www.trustix.org/errata/2007/0009/"
            },
            {
              "name": "24284",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24284"
            },
            {
              "name": "24419",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24419"
            },
            {
              "name": "32765",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://osvdb.org/32765"
            },
            {
              "name": "32764",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://osvdb.org/32764"
            },
            {
              "name": "ADV-2007-0546",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2007/0546"
            },
            {
              "name": "oval:org.mitre.oval:def:9722",
              "refsource": "OVAL",
              "tags": [],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9722"
            },
            {
              "name": "20070227 rPSA-2007-0043-1 php php-mysql php-pgsql",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/461462/100/0/threaded"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 7.5,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": true,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2018-10-30T16:25Z",
      "publishedDate": "2007-02-13T23:28Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2007-0909 (GCVE-0-2007-0909)

CERTA-2007-AVI-076

Description

Solution

CERTA-2007-AVI-144

Solution

GHSA-57Q9-CW6P-2QRG

FKIE_CVE-2007-0909

GSD-2007-0909

Tags

Sightings

Nomenclature