Published: 21/03/2007 Updated: 11/10/2017

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

VMScore: 690

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Buffer underflow in the header function in PHP 5.2.0 allows context-dependent malicious users to execute arbitrary code by passing an all-whitespace string to this function, which causes it to write '\0' characters in whitespace that precedes the string.

Vulnerable Product	Search on Vulmon	Subscribe to Product
php php 5.2.0

<?php //////////////////////////////////////////////////////////////////////// // _ _ _ _ ___ _ _ ___ // // | || | __ _ _ _ __| | ___ _ _ ___ __| | ___ | _ \| || || _ \ // // | __ |/ _` || '_|/ _` |/ -_)| ' \ / -_)/ _` ||___|| _/| __ || _/ // // |_||_|\__,_||_| \__,_|\___||_||_|\_ ...

NVD-CWE-Other http://www.php-security.org/MOPB/MOPB-25-2007.html https://www.exploit-db.com/exploits/3517 https://nvd.nist.gov https://www.exploit-db.com/exploits/3517/

CVE-2007-1584

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect