Russian Vulnerability Scanner Database

Back to List

CVE-2007-1286

Scores

EPSS

0.861high86.1%
0%20%40%60%80%100%

Percentile: 86.1%

CVSS

6.8medium2.0
0246810

CVSS Score: 6.8/10

All CVSS Scores

CVSS 2.0
6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Description

Integer overflow in PHP 4.4.4 and earlier allows remote context-dependent attackers to execute arbitrary code via a long string to the unserialize function, which triggers the overflow in the ZVAL reference counter.

Scaner-VS 7 — a modern vulnerability management solution

Uses this database for vulnerability detection. High-speed search, cross-platform, advanced configuration audit, and flexible filtering. Suitable for organizations of any size.
Learn more about Scaner-VS 7

Sources

debiannvdredhat

Exploits

Exploit ID: 16310

Source: exploitdb

URL: https://www.exploit-db.com/exploits/16310

Exploit ID: 3396

Source: exploitdb

URL: https://www.exploit-db.com/exploits/3396

Exploit ID: 9939

Source: exploitdb

URL: https://www.exploit-db.com/exploits/9939

Vulnerable Software (7)

Type: Configuration

Product: php

Operating System: rhel 2.1

Trait: 
{  "fixed": "4.1.2-2.17"}

Source: redhat

Type: Configuration

Product: php

Operating System: rhel 3

Trait: 
{  "fixed": "4.3.2-40.ent"}

Source: redhat

Type: Configuration

Product: php

Operating System: rhel 4

Trait: 
{  "fixed": "4.3.9-3.22.4"}

Source: redhat

Type: Configuration

Product: php4

Operating System: debian

Trait: 
{  "fixed": "6:4.4.6-1"}

Source: debian

Type: Configuration

Product: php5

Operating System: debian

Trait: 
{  "fixed": "5.2.0-11"}

Source: debian

Type: Configuration

Product: stronghold-php

Operating System: rhel

Trait: 
{  "fixed": "4.1.2-15"}

Source: redhat

Type: Configuration

Vendor: *

Product: php

Operating System: * * *

Trait: 
{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*",      "versionEndIncluding": "4.4.4",      "vulnerable": true    }  ],  "operator": "OR"}

Source: nvd

End of list