CVE-2007-1864 — Vulnetix

Try Vulnetix Request Demo

CVE-2007-1864 PUBLISHED CVSS 7.5 HIGH

Buffer overflow in the bundled libxmlrpc library in PHP before 4.4.7, and 5.x before 5.2.2, has unknown impact and remote attack vectors.

EPSS 7.75% · 91.9th percentile

Risk Scores

CVSS v2.0

7.5

EPSS Score

7.75%

91.9th percentile

Affected Products

Vendor	Product	Versions
canonical	ubuntu_linux	6.06, 7.04, 6.10
redhat	enterprise_linux_workstation	5.0
n/a	n/a	n/a
php	php	5.2.0, 5.1.0, 0
debian	debian_linux	4.0, 3.1
redhat	enterprise_linux_server	5.0

Timeline

May 9, 2007 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score
Aug 31, 2023 EPSS Score
Oct 22, 2023 EPSS Score

References

http://secunia.com/advisories/25660 url
http://secunia.com/advisories/25938 url
MDKSA-2007:103 vendor-advisory
25187 third-party-advisory
25191 third-party-advisory
ADV-2007-2187 vdb
MDKSA-2007:102 vendor-advisory
26048 third-party-advisory
RHSA-2007:0355 vendor-advisory
oval:org.mitre.oval:def:11257 vdb
GLSA-200705-19 vendor-advisory
2007-0017 vendor-advisory
23813 vdb
http://us2.php.net/releases/4_4_7.php url
RHSA-2007:0349 vendor-advisory
DSA-1331 vendor-advisory
https://issues.rpath.com/browse/RPL-1693 url
DSA-1330 vendor-advisory
http://us2.php.net/releases/5_2_2.php url
USN-485-1 vendor-advisory

…and 12 more

Open in Interactive Console →