CVE-2007-0910

NONE EPSS 86.9%
Published Feb 13, 200719y ago · Modified Jun 16, 20262w ago
Find Similar
Published Feb 13, 2007 19y ago
Last Modified Jun 16, 2026 2w ago

Description

Unspecified vulnerability in PHP before 5.2.1 allows attackers to "clobber" certain super-global variables via unspecified vectors.

Threat Intelligence

EPSS Exploit Probability
86.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 77

VendorProductVersionRange
phpphp* ≤5.2.0
phpphp3.0any
phpphp3.0.1any
phpphp3.0.2any
phpphp3.0.3any
phpphp3.0.4any
phpphp3.0.5any
phpphp3.0.6any
phpphp3.0.7any
phpphp3.0.8any
phpphp3.0.9any
phpphp3.0.10any
phpphp3.0.11any
phpphp3.0.12any
phpphp3.0.13any
phpphp3.0.14any
phpphp3.0.15any
phpphp3.0.16any
phpphp3.0.17any
phpphp3.0.18any
phpphp4.0any
phpphp4.0.1any
phpphp4.0.1any
phpphp4.0.1any
phpphp4.0.2any
phpphp4.0.3any
phpphp4.0.3any
phpphp4.0.4any
phpphp4.0.5any
phpphp4.0.6any
phpphp4.0.7any
phpphp4.0.7any
phpphp4.0.7any
phpphp4.0.7any
phpphp4.1.0any
phpphp4.1.1any
phpphp4.1.2any
phpphp4.2any
phpphp4.2.0any
phpphp4.2.1any
phpphp4.2.2any
phpphp4.2.3any
phpphp4.3.0any
phpphp4.3.1any
phpphp4.3.2any
phpphp4.3.3any
phpphp4.3.4any
phpphp4.3.5any
phpphp4.3.6any
phpphp4.3.7any
phpphp4.3.8any
phpphp4.3.9any
phpphp4.3.10any
phpphp4.3.11any
phpphp4.4.0any
phpphp4.4.1any
phpphp4.4.2any
phpphp4.4.3any
phpphp4.4.4any
phpphp5.0any
phpphp5.0any
phpphp5.0any
phpphp5.0.0any
phpphp5.0.1any
phpphp5.0.2any
phpphp5.0.3any
phpphp5.0.4any
phpphp5.0.5any
phpphp5.1.0any
phpphp5.1.1any
phpphp5.1.2any
phpphp5.1.3any
phpphp5.1.4any
phpphp5.1.5any
phpphp5.1.6any
trustixsecure_linux2.2any
trustixsecure_linux3.0any

References 42

  • patches.sgi.com ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc
  • lists.suse.com http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html
  • osvdb.org http://osvdb.org/32763
  • rhn.redhat.com http://rhn.redhat.com/errata/RHSA-2007-0089.html
  • secunia.com http://secunia.com/advisories/24089
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/24195
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/24217
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/24236
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/24248
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/24284
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/24295
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/24322
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/24419
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/24421
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/24432
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/24514
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/24606
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/24642
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/24945
    Vendor Advisory
  • security.gentoo.org http://security.gentoo.org/glsa/glsa-200703-21.xml
  • support.avaya.com http://support.avaya.com/elmodocs2/security/ASA-2007-101.htm
  • support.avaya.com http://support.avaya.com/elmodocs2/security/ASA-2007-136.htm
  • mandriva.com http://www.mandriva.com/security/advisories?name=MDKSA-2007:048
  • openpkg.com http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html
  • php.net http://www.php.net/ChangeLog-5.php#5.2.1
  • php.net http://www.php.net/releases/5_2_1.php
  • redhat.com http://www.redhat.com/support/errata/RHSA-2007-0076.html
  • redhat.com http://www.redhat.com/support/errata/RHSA-2007-0081.html
  • redhat.com http://www.redhat.com/support/errata/RHSA-2007-0082.html
  • redhat.com http://www.redhat.com/support/errata/RHSA-2007-0088.html
  • securityfocus.com http://www.securityfocus.com/archive/1/461462/100/0/threaded
  • securityfocus.com http://www.securityfocus.com/archive/1/466166/100/0/threaded
  • securityfocus.com http://www.securityfocus.com/bid/22496
    Patch
  • securitytracker.com http://www.securitytracker.com/id?1017671
  • trustix.org http://www.trustix.org/errata/2007/0009/
  • ubuntu.com http://www.ubuntu.com/usn/usn-424-1
  • ubuntu.com http://www.ubuntu.com/usn/usn-424-2
  • us.debian.org http://www.us.debian.org/security/2007/dsa-1264
  • vupen.com http://www.vupen.com/english/advisories/2007/0546
    Vendor Advisory
  • issues.rpath.com https://issues.rpath.com/browse/RPL-1088
  • issues.rpath.com https://issues.rpath.com/browse/RPL-1268
  • oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9514

Remediation