Vulnerability Name:

CVE-2007-1453 (CCN-33231)

Assigned:2007-03-12
Published:2007-03-12
Updated:2008-09-05
Summary:Buffer underflow in the PHP_FILTER_TRIM_DEFAULT macro in the filtering extension (ext/filter) in PHP 5.2.0 allows context-dependent attackers to execute arbitrary code by calling filter_var with certain modes such as FILTER_VALIDATE_INT, which causes filter to write a null byte in whitespace that precedes the buffer.
CVSS v3 Severity:7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
5.9 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:POC/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
5.9 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:POC/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2007-1453

Source: SECUNIA
Type: UNKNOWN
25056

Source: SECUNIA
Type: UNKNOWN
25062

Source: DEBIAN
Type: UNKNOWN
DSA-1283

Source: DEBIAN
Type: DSA-1283
php5 -- several vulnerabilities

Source: SUSE
Type: UNKNOWN
SUSE-SA:2007:032

Source: CCN
Type: OSVDB ID: 33933
PHP ext/filter Space Trimming Underflow

Source: CCN
Type: MOPB-19-2007
PHP ext/filter Space Trimming Buffer Underflow Vulnerability

Source: MISC
Type: UNKNOWN
http://www.php-security.org/MOPB/MOPB-19-2007.html

Source: CCN
Type: The PHP Group Web site
PHP 5.2.1 Release Announcement

Source: MISC
Type: UNKNOWN
http://www.php.net/releases/5_2_1.php

Source: BID
Type: Exploit
22922

Source: CCN
Type: BID-22922
PHP EXT/Filter Function Remote Buffer Overflow Vulnerability

Source: XF
Type: UNKNOWN
php-extfilter-buffer-underflow(33231)

Source: SUSE
Type: SUSE-SA:2007:032
PHP security problems

Vulnerable Configuration:Configuration 1:
  • cpe:/a:php:php:5.2.0:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:php:php:5.2.0:*:*:*:*:*:*:*
  • AND
  • cpe:/o:debian:debian_linux:3.1:*:*:*:*:*:*:*
  • OR cpe:/a:novell:open_enterprise_server:*:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:4.0:*:*:*:*:*:*:*
  • OR cpe:/a:novell:open_enterprise_server:*:*:*:*:*:*:*:*
  • OR cpe:/o:opensuse:opensuse:10.2:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:19944
    P
    		DSA-1283-1 php5
    2014-06-23
    oval:org.opensuse.security:def:20071453
    V
    		CVE-2007-1453
    2012-07-03
    oval:org.debian:def:1283
    V
    		several vulnerabilities
    2007-04-29
    BACK
    php php 5.2.0
    php php 5.2.0
    debian debian linux 3.1
    novell open enterprise server *
    debian debian linux 4.0
    novell open enterprise server *
    novell opensuse 10.2