VDB
CVE-2007-2510
CVE-2007-2510
PUBLISHED
CVSS 5.099999904632568 MEDIUM
Buffer overflow in the make_http_soap_request function in PHP before 5.2.2 has unknown impact and remote attack vectors, possibly related to "/" (slash) characters.
EPSS 4.22% · 89.0th percentile
Risk Scores
CVSS 2.0
5.099999904632568
EPSS Score
4.22%
89.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| php | php | 4.0.7, 4.0.0, 4.0.1 |
| n/a | n/a | n/a |
Exploit Intelligence
- 25187 (circl)
- 25191 (circl)
- USN-462-1 (circl)
- MDKSA-2007:102 (circl)
- 26048 (circl)
- RHSA-2007:0355 (circl)
- GLSA-200705-19 (circl)
- 2007-0017 (circl)
- 23813 (circl)
- http://viewcvs.php.net/viewvc.cgi/php-src/ext/soap/php_http.c?r1=1.77.2.11.2.5&r2=1.77.2.11.2.6 (circl)
…and 12 more exploits
Timeline
- May 9, 2007 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
- Oct 30, 2023 EPSS Score
- Dec 22, 2023 EPSS Score
References
- 25187 third-party-advisory
- 25191 third-party-advisory
- USN-462-1 vendor-advisory
- MDKSA-2007:102 vendor-advisory
- 26048 third-party-advisory
- RHSA-2007:0355 vendor-advisory
- GLSA-200705-19 vendor-advisory
- 2007-0017 vendor-advisory
- 23813 vdb
- http://viewcvs.php.net/viewvc.cgi/php-src/ext/soap/php_http.c?r1=1.77.2.11.2.5&r2=1.77.2.11.2.6 url
- DSA-1295 vendor-advisory
- 25318 third-party-advisory
- 34675 vdb
- oval:org.mitre.oval:def:10715 vdb
- 24034 vdb
- http://us2.php.net/releases/5_2_2.php url
- 1018023 vdb
- 25255 third-party-advisory
- 25445 third-party-advisory
- 25372 third-party-advisory
…and 4 more