FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2007-2872

This CVE name corresponds to:

Entered Topic
2007-09-11 php -- multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2007-2872 at cve.mitre.org

Details

Type Candidate
Name CVE-2007-2872
Phase Assigned(20070529)

Description

Multiple integer overflows in the chunk_split function in PHP 5 before 5.2.3 and PHP 4 before 4.4.8 allow remote attackers to cause a denial of service (crash) or execute arbitrary code via the (1) chunks, (2) srclen, and (3) chunklen arguments.

References

Source Reference
BUGTRAQ 20070601 SEC Consult SA-20070601-0 :: PHP chunk_split() integer overflow
MISC http://www.sec-consult.com/291.html
CONFIRM http://www.php.net/releases/5_2_3.php
CONFIRM https://issues.rpath.com/browse/RPL-1702
CONFIRM https://issues.rpath.com/browse/RPL-1693
CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2007-449.htm
CONFIRM https://launchpad.net/bugs/173043
CONFIRM http://www.php.net/ChangeLog-4.php
CONFIRM http://www.php.net/releases/4_4_8.php
FEDORA FEDORA-2007-709
FEDORA FEDORA-2007-2215
GENTOO GLSA-200710-02
HP HPSBUX02262
HP SSRT071447
HP HPSBUX02308
HP SSRT080010
HP HPSBUX02332
HP SSRT080056
MANDRIVA MDKSA-2007:187
OPENPKG OpenPKG-SA-2007.020
REDHAT RHSA-2007:0890
REDHAT RHSA-2007:0889
REDHAT RHSA-2007:0888
REDHAT RHSA-2007:0891
SLACKWARE SSA:2007-152-01
SLACKWARE SSA:2008-045-03
SUSE SUSE-SA:2007:044
SUSE SUSE-SA:2008:004
TRUSTIX 2007-0023
UBUNTU USN-549-1
UBUNTU USN-549-2
BID 24261
OSVDB 36083
OVAL oval:org.mitre.oval:def:9424
VUPEN ADV-2007-2061
VUPEN ADV-2007-3386
VUPEN ADV-2008-0398
SECTRACK 1018186
SECUNIA 25535
SECUNIA 25456
SECUNIA 26048
SECUNIA 26231
SECUNIA 26838
SECUNIA 26930
SECUNIA 26871
SECUNIA 26895
SECUNIA 26967
SECUNIA 27037
SECUNIA 27110
SECUNIA 27351
SECUNIA 27377
SECUNIA 27545
SECUNIA 27102
SECUNIA 27864
SECUNIA 28318
SECUNIA 28658
SECUNIA 28750
SECUNIA 28936
SECUNIA 30040
VUPEN ADV-2008-0059
XF php-chunksplit-security-bypass(39398)

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.