FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2007-3806

This CVE name corresponds to:

Entered Topic
2007-09-11 php -- multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2007-3806 at cve.mitre.org

Details

Type Candidate
Name CVE-2007-3806
Phase Assigned(20070716)

Description

The glob function in PHP 5.2.3 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an invalid value of the flags parameter, probably related to memory corruption or an invalid read on win32 platforms, and possibly related to lack of initialization for a glob structure.

References

Source Reference
EXPLOIT-DB 4181
MILW0RM 4181
MISC http://cvs.php.net/viewvc.cgi/php-src/ext/standard/dir.c?r1=1.166&r2=1.167
MISC http://cvs.php.net/viewvc.cgi/php-src/ext/standard/dir.c?view=log
CONFIRM http://www.php.net/ChangeLog-5.php#5.2.4
CONFIRM http://www.php.net/releases/5_2_4.php
DEBIAN DSA-1578
DEBIAN DSA-1572
GENTOO GLSA-200710-02
BID 24922
BID 25498
OSVDB 36085
VUPEN ADV-2007-2547
SECUNIA 26085
SECUNIA 26642
SECUNIA 27102
SECUNIA 30288
SECUNIA 30158
XF php-glob-security-bypass(35437)

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.