CVE-2007-1375

PHP <5.2.1 - Memory Corruption

Title source: llm

Description

Integer overflow in the substr_compare function in PHP 5.2.1 and earlier allows context-dependent attackers to read sensitive memory via a large value in the length argument, a different vulnerability than CVE-2006-1991.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Stefan Esser · phplocalmultiple

https://www.exploit-db.com/exploits/3424

View Code ZIP pw:eip

References (15)

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDKSA-2007:187

[Third Party Advisory, VDB Entry] http://www.osvdb.org/32780

[Exploit, Vendor Advisory] http://www.php-security.org/MOPB/MOPB-14-2007.html

[Vendor Advisory] http://www.ubuntu.com/usn/usn-455-1

[Vendor Advisory] http://www.novell.com/linux/security/advisories/2007_32_php.html

[Release Notes] http://us2.php.net/releases/5_2_2.php

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/22851

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/3424

[Third Party Advisory] http://www.debian.org/security/2007/dsa-1283

[Third Party Advisory] http://security.gentoo.org/glsa/glsa-200703-21.xml

[Third Party Advisory] http://secunia.com/advisories/24606

[Third Party Advisory] http://secunia.com/advisories/25056

[Third Party Advisory] http://secunia.com/advisories/25057

[Third Party Advisory] http://secunia.com/advisories/25062

[Third Party Advisory] http://secunia.com/advisories/26895

Scores

EPSS 0.1712

EPSS Percentile 95.0%

Details

Status published

Products (1)

php/php < 5.2.1

Published Mar 10, 2007

Tracked Since Feb 18, 2026