Home > Vulnerability Database > CVE-2007-1864

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2007-1864

Date: May 8, 2007

Buffer overflow in the bundled libxmlrpc library in PHP before 4.4.7, and 5.x before 5.2.2, has unknown impact and remote attack vectors.

Severity Score

7.3

Related Resources (34)

Url: http://www.ubuntu.com/usn/usn-485-1

Url: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11257

Url: http://www.redhat.com/support/errata/RHSA-2007-0349.html

Url: http://www.securitytracker.com/id?1018024

Url: https://rhn.redhat.com/errata/RHSA-2007-0348.html

Url: http://www.trustix.org/errata/2007/0017/

Url: http://secunia.com/advisories/25938

Url: http://secunia.com/advisories/26102

Url: http://secunia.com/advisories/27377

Url: http://secunia.com/advisories/25255

Url: http://secunia.com/advisories/26048

Url: http://secunia.com/advisories/25191

Url: https://access.redhat.com/security/cve/CVE-2007-1864

Url: http://lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.html

Url: http://www.vupen.com/english/advisories/2007/2187

Url: https://nvd.nist.gov/vuln/detail/CVE-2007-1864

Url: http://www.debian.org/security/2007/dsa-1331

Url: https://issues.rpath.com/browse/RPL-1693

Url: http://us2.php.net/releases/4_4_7.php

Url: http://www.debian.org/security/2007/dsa-1330

Url: http://www.securityfocus.com/bid/23813

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2007-1864

Url: http://support.avaya.com/elmodocs2/security/ASA-2007-231.htm

Url: http://secunia.com/advisories/25945

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2007:103

Url: http://us2.php.net/releases/5_2_2.php

Url: http://osvdb.org/34674

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2007:102

Url: http://secunia.com/advisories/25660

Url: http://secunia.com/advisories/25187

Url: http://www.redhat.com/support/errata/RHSA-2007-0355.html

Url: http://security.gentoo.org/glsa/glsa-200705-19.xml

Url: http://secunia.com/advisories/25445

Url: https://www.mend.io/vulnerability-database/CVE-2007-1864

Severity Score

7.3

Weakness Type (CWE)

Buffer Errors

CWE-119

CVSS v3.1

Base Score:	7.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

CVSS v2

Base Score:	7.5
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	PARTIAL
Additional information:

Do you need more information?

Contact Us