CVE-2007-1399
Advisory lineage Upstream: 0 Downstream: 1
Downstream
Analyzed
Published: 10 Mar 2007, 22:00
Last modified:07 Aug 2024, 12:50
Vulnerability Summary
Overall Risk (default)
critical
90/100 CVSS Score
10 HIGH
v2.0 (nvd)
EPSS Score
39.02% HIGH
39% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
2 found
Dark Web
Not detected
Timeline
10 Mar 2007, 22:00
Published
Vulnerability first disclosed
07 Aug 2024, 12:50
Last Modified
Vulnerability information updated
Description
Stack-based buffer overflow in the zip:// URL wrapper in PECL ZIP 1.8.3 and earlier, as bundled with PHP 5.2.0 and 5.2.1, allows remote attackers to execute arbitrary code via a long zip:// URL, as demonstrated by actively triggering URL access from a remote PHP interpreter via avatar upload or blog pingback.
CVSS Metrics
- v3.1•CRITICAL•Score: 9.8CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- v2.0•HIGH•Score: 10AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS Trends
Current EPSS score: 39.02%• Percentile: 97%
Affected Systems
- Unknown•PHP
5.2.0 | 5.2.1
- pierrejoye•php_zip
< 1.8.4
References (10)
- http://www.php-security.org/MOPB/MOPB-16-2007.html
- http://secunia.com/advisories/24514
- http://www.osvdb.org/32782
- http://www.securityfocus.com/bid/22883
- http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html
- http://www.debian.org/security/2007/dsa-1330
- http://www.vupen.com/english/advisories/2007/0898
- http://secunia.com/advisories/24471
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32889
- http://secunia.com/advisories/25938