CVE-2007-1378 — MEDIUM (5.1)

Vulnerability Description

The ovrimos_longreadlen function in the Ovrimos extension for PHP before 4.4.5 allows context-dependent attackers to write to arbitrary memory locations via the result_id and length arguments.

CVSS Score

5.1

MEDIUM

AV:N/AC:H/Au:N/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Php	Php	3.0

References

http://www.osvdb.org/32779
http://www.php-security.org/MOPB/MOPB-13-2007.html
http://www.securityfocus.com/bid/22833
http://www.osvdb.org/32779
http://www.php-security.org/MOPB/MOPB-13-2007.html
http://www.securityfocus.com/bid/22833

FAQ

What is CVE-2007-1378?

CVE-2007-1378 is a vulnerability with a CVSS score of 5.1 (MEDIUM). The ovrimos_longreadlen function in the Ovrimos extension for PHP before 4.4.5 allows context-dependent attackers to write to arbitrary memory locations via the result_id and length arguments.

How severe is CVE-2007-1378?

CVE-2007-1378 has been rated MEDIUM with a CVSS base score of 5.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2007-1378?

Check the references section above for vendor advisories and patch information. Affected products include: Php Php.