Oval Definition:	oval:org.opensuse.security:def:20071701
Revision Date: 2022-09-02 Version: 1 Title: CVE-2007-1701 Description: PHP 4 before 4.4.5, and PHP 5 before 5.2.1, when register_globals is enabled, allows context-dependent attackers to execute arbitrary code via deserialization of session data, which overwrites arbitrary global variables, as demonstrated by calling session_decode on a string beginning with "_SESSION|s:39:". Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2007-1701 SUSE CVE-2007-1701 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 12 SP5 SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 11 SP2 SUSE Linux Enterprise Server for SAP Applications 11 SP3 SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Software Development Kit 12 SP5 Product(s): Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP1 is installed AND php5 is not affected OR Package Information SUSE Linux Enterprise Server 11 SP3 is installed OR SUSE Linux Enterprise Server 11 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 11 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND php53 is not affected OR Package Information SUSE Linux Enterprise Server 11 SP2 is installed OR SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND php5 is not affected OR php53 is not affected Definition Synopsis Release Information SUSE Linux Enterprise Software Development Kit 12 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND php5 is not affected OR php7 is not affected OR php72 is not affected OR Package Information SUSE Linux Enterprise Software Development Kit 12 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP1 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND php5 is not affected OR php7 is not affected OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND php7-devel is not affected OR php72-devel is not affected Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP1 is installed AND php5 is not affected OR Package Information SUSE Linux Enterprise Server 11 SP3 is installed AND php53 is not affected OR Package Information SUSE Linux Enterprise Server 11 SP2 is installed AND php5 is not affected OR php53 is not affected Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND Package Information php7-devel is not affected OR php72-devel is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND Package Information php5 is not affected OR php7 is not affected OR php72 is not affected
BACK