mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 17:21:36 +00:00
368 lines
14 KiB
JSON
368 lines
14 KiB
JSON
{
|
|
"id": "CVE-2007-1396",
|
|
"sourceIdentifier": "cve@mitre.org",
|
|
"published": "2007-03-10T22:19:00.000",
|
|
"lastModified": "2024-11-21T00:28:12.483",
|
|
"vulnStatus": "Modified",
|
|
"cveTags": [],
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "The import_request_variables function in PHP 4.0.7 through 4.4.6, and 5.x before 5.2.2, when called without a prefix, does not prevent the (1) GET, (2) POST, (3) COOKIE, (4) FILES, (5) SERVER, (6) SESSION, and other superglobals from being overwritten, which allows remote attackers to spoof source IP address and Referer data, and have other unspecified impact. NOTE: it could be argued that this is a design limitation of PHP and that only the misuse of this feature, i.e. implementation bugs in applications, should be included in CVE. However, it has been fixed by the vendor."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "La funci\u00f3n import_request_variables en PHP versi\u00f3n 4.0.7 hasta 4.4.6 y versi\u00f3n 5.x anterior a 5.2.2, cuando se llama sin prefijo, no impide que (1) GET, (2) POST, (3) COOKIE, (4) FILES, (5) SERVER, (6) SESSION y otras super globales se sobrescriban, lo que permite a atacantes remotos suplantar la direcci\u00f3n IP de origen y el datos Referer, y tienen otro impacto no especificado. NOTA: se podr\u00eda argumentar que se trata de una limitaci\u00f3n de dise\u00f1o de PHP y que s\u00f3lo el uso inapropiado de esta caracter\u00edstica, es decir, errores de implementaci\u00f3n en aplicaciones, debe incluirse en el CVE. Sin embargo, ha sido corregido por el proveedor."
|
|
}
|
|
],
|
|
"metrics": {
|
|
"cvssMetricV2": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"cvssData": {
|
|
"version": "2.0",
|
|
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
|
|
"baseScore": 6.8,
|
|
"accessVector": "NETWORK",
|
|
"accessComplexity": "MEDIUM",
|
|
"authentication": "NONE",
|
|
"confidentialityImpact": "PARTIAL",
|
|
"integrityImpact": "PARTIAL",
|
|
"availabilityImpact": "PARTIAL"
|
|
},
|
|
"baseSeverity": "MEDIUM",
|
|
"exploitabilityScore": 8.6,
|
|
"impactScore": 6.4,
|
|
"acInsufInfo": false,
|
|
"obtainAllPrivilege": false,
|
|
"obtainUserPrivilege": false,
|
|
"obtainOtherPrivilege": false,
|
|
"userInteractionRequired": false
|
|
}
|
|
]
|
|
},
|
|
"weaknesses": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "NVD-CWE-Other"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"configurations": [
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.0.7:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "2D724D09-0D45-4701-93C9-348301217C8C"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.1.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "6713614A-B14E-4A85-BF89-ED780068FC68"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.1.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "FD95F8EB-B428-4B3C-9254-A5DECE03A989"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.1.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "069EB7EE-06B9-454F-9007-8DE5DCA33C53"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.2.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "18BF5BE6-09EA-45AD-93BF-2BEF1742534E"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.2.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "EC1460DF-1687-4314-BF1A-01290B20302D"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.2.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "470380B0-3982-48FC-871B-C8B43C81900D"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.2.3:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "9FAA7712-10F0-4BB6-BAFB-D0806AFD9DE2"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.3.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "63190D9B-7958-4B93-87C6-E7D5A572F6DC"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.3.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "7AB2E2E8-81D6-4973-AC0F-AA644EE99DD3"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.3.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "4AAF4586-74FF-47C6-864B-656FDF3F33D0"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.3.3:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "B14EF0C7-61F2-47A4-B7F8-43FF03C62DCA"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.3.4:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "5245F990-B4A7-4ED8-909D-B8137CE79FAA"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.3.5:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "5652D5B0-68E4-4239-B9B7-599AFCF4C53E"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.3.6:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "57B71BB7-5239-4860-9100-8CABC3992D8C"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.3.7:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "72BD447A-4EED-482C-8F61-48FAD4FCF8BA"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.3.8:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "B3F9DF9D-15E5-4387-ABE3-A7583331A928"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.3.9:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "11579E5C-D7CF-46EE-B015-5F4185C174E7"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.3.10:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "C69CDE21-2FD4-4529-8F02-8709CF5E3D7E"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.3.11:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "221B9AC4-C63C-4386-B3BD-E4BC102C6124"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.4.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "78B7BA75-2A32-4A8E-ADF8-BCB4FC48CB5C"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.4.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "2BEA491B-77FD-4760-8F6F-3EBC6BD810D9"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.4.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "BB25CFBB-347C-479E-8853-F49DD6CBD7D4"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.4.3:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "4D2937B3-D034-400E-84F5-33833CE3764D"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.4.4:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "71AEE8B4-FCF8-483B-8D4C-2E80A02E925E"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.4.5:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "4C2AF1D9-33B6-4B2C-9269-426B6B720164"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:4.4.6:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "84B70263-37AA-4539-A286-12038A3792C6"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:5.0.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "7007E77F-60EF-44D8-9676-15B59DF1325F"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:5.0.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "17437AED-816A-4CCF-96DE-8C3D0CC8DB2B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:5.0.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "74E7AE59-1CB0-4300-BBE0-109F909789EF"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:5.0.3:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "9222821E-370F-4616-B787-CC22C2F4E7CD"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:5.0.4:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "9809449F-9A76-4318-B233-B4C2950A6EA9"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:5.0.5:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "0AA962D4-A4EC-4DC3-B8A9-D10941B92781"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:5.1.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "F8CDFEF9-C367-4800-8A2F-375C261FAE55"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:5.1.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "16E43B88-1563-4EFD-9267-AE3E8C35D67A"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:5.1.2:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "11E5715F-A8BC-49EF-836B-BB78E1BC0790"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:5.1.3:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "5FA68843-158E-463E-B68A-1ACF041C4E10"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:5.1.4:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "1874F637-77E2-4C4A-BF92-AEE96A60BFB0"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:5.1.5:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "9592B32E-55CD-42D0-901E-8319823BC820"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:5.1.6:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "A9BF34B5-F74C-4D56-9841-42452D60CB87"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:5.2.0:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "CD02D837-FD28-4E0F-93F8-25E8D1C84A99"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:php:php:5.2.1:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "88358D1E-BE6F-4CE3-A522-83D1FA4739E3"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "http://lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.html",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://secunia.com/advisories/26048",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://securityreason.com/securityalert/2406",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://us2.php.net/releases/4_4_7.php",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://us2.php.net/releases/5_2_2.php",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/archive/1/462263/100/0/threaded",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/archive/1/462457/100/0/threaded",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/archive/1/462658/100/0/threaded",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/archive/1/462800/100/0/threaded",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/bid/22886",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.html",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://secunia.com/advisories/26048",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://securityreason.com/securityalert/2406",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://us2.php.net/releases/4_4_7.php",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://us2.php.net/releases/5_2_2.php",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/archive/1/462263/100/0/threaded",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/archive/1/462457/100/0/threaded",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/archive/1/462658/100/0/threaded",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/archive/1/462800/100/0/threaded",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://www.securityfocus.com/bid/22886",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
}
|
|
],
|
|
"vendorComments": [
|
|
{
|
|
"organization": "Red Hat",
|
|
"comment": "Red Hat does not consider this to be a security vulnerability. Using import_request_variables() is generally a discouraged practice and it is improper use that can lead to security problems, not flaw of PHP itself.\n",
|
|
"lastModified": "2007-03-19T00:00:00"
|
|
}
|
|
]
|
|
} |