PT-2007-3068 · Php+1 · Php+1

Publicado

2007-02-19

Atualizado

2019-10-09

CVE-2007-1701

CVSS v2.0

6.8

Média

Vetor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: PHP versions prior to 4.4.5 PHP versions prior to 5.2.1

Description: The issue allows context-dependent attackers to execute arbitrary code via deserialization of session data. This occurs when register globals is enabled, and it can overwrite arbitrary global variables. An example of exploitation is by calling session decode() on a string beginning with " SESSION|s:39:".

Recommendations: For PHP versions prior to 4.4.5, update to version 4.4.5 or later to resolve the issue. For PHP versions prior to 5.2.1, update to version 5.2.1 or later to resolve the issue. As a temporary workaround, consider disabling the register globals setting until a patch is available.

Exploit

Correção

Deserialization of Untrusted Data

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-502

Identificadores relacionados

CVE-2007-1701

RHSA-2007:0076

RHSA-2007:0081

RHSA-2007:0082

RHSA-2007:0088

RHSA-2007:0089

RHSA-2007_0076

RHSA-2007_0082

Produtos afetados

Php

Red Hat

PT-2007-3068 · Php+1 · Php+1

CVE-2007-1701

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 32