CVE-2007-1381: Buffer Overflow
First published: Sat Mar 10 2007(Updated: )
The wddx_deserialize function in wddx.c 1.119.2.10.2.12 and 1.119.2.10.2.13 in PHP 5, as modified in CVS on 20070224 and fixed on 20070304, calls strlcpy where strlcat was intended and uses improper arguments, which allows context-dependent attackers to execute arbitrary code via a WDDX packet with a malformed overlap of a STRING element, which triggers a buffer overflow.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| PHP | =5.0.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2007-1381?
CVE-2007-1381 is considered to be a critical vulnerability that may allow attackers to execute arbitrary code.
How do I fix CVE-2007-1381?
To fix CVE-2007-1381, upgrade to a patched version of PHP that addresses this vulnerability.
What versions of PHP are affected by CVE-2007-1381?
CVE-2007-1381 affects PHP version 5.0.0 and prior versions before the fix was applied.
What type of attacks can be performed using CVE-2007-1381?
CVE-2007-1381 can be exploited by context-dependent attackers to execute arbitrary code via manipulated WDDX packets.
Is CVE-2007-1381 exploitable remotely?
Yes, CVE-2007-1381 can be exploited remotely if the vulnerable PHP service processes untrusted WDDX data.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/author
- agent/event
- agent/description
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/weakness
- agent/softwarecombine
- vendor/php
- canonical/php
- version/php/5.0.0