CVE-2007-2728

Related Files

Mandriva Linux Security Advisory 2007.187

Posted Sep 25, 2007

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Numerous vulnerabilities were discovered in the PHP scripting language that are corrected with this update. Not just a couple, not a few, but many.

tags | advisory, php, vulnerability

systems | linux, mandriva

advisories | CVE-2007-1375, CVE-2007-1399, CVE-2007-1900, CVE-2007-2727, CVE-2007-2728, CVE-2007-2748, CVE-2007-2756, CVE-2007-2872, CVE-2007-3799, CVE-2007-3996, CVE-2007-3998, CVE-2007-4658, CVE-2007-4670

SHA-256 | 01d42bfc7015b848897634663e966d52f46f75ad839abd6b538db6357c46f4f2

Download | Favorite | View

Ubuntu Security Notice 485-1

Posted Jul 18, 2007

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 485-1 - It was discovered that the PHP xmlrpc extension did not correctly check heap memory allocation sizes. A remote attacker could send a specially crafted request to a PHP application using xmlrpc and execute arbitrary code as the Apache user. Stefan Esser discovered a flaw in the random number initialization of the PHP SOAP extension. This could lead to remote attackers being able to predict certain elements of the authentication mechanism.

tags | advisory, remote, arbitrary, php

systems | linux, ubuntu

advisories | CVE-2007-1864, CVE-2007-2728

SHA-256 | 3b1aa1db8f86fd8720cd09c25870adcb7f21377c0979f21e48754ce40876a96b

Download | Favorite | View