Vulnerability Description
Multiple vulnerabilities in (1) bank.php, (2) landfill.php, (3) outposts.php, (4) tribes.php, (5) house.php, (6) tribearmor.php, (7) tribeastral.php, (8) tribeware.php, and (9) includes/head.php in Bartek Jasicki Vallheru before 1.3 beta have unknown impact and remote attack vectors, probably related to large integer values containing more than 15 digits. NOTE: the original vendor report is for integer overflows, but this is probably an incorrect usage of the term.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Vallheru | Vallheru | <= 1.0.6 |
References
- http://sourceforge.net/forum/forum.php?forum_id=672237
- http://sourceforge.net/project/shownotes.php?release_id=491871&group_id=118350Patch
- http://vallheru.svn.sourceforge.net/viewvc/vallheru/vallheru2/bank.php?r1=910&r2
- http://sourceforge.net/forum/forum.php?forum_id=672237
- http://sourceforge.net/project/shownotes.php?release_id=491871&group_id=118350Patch
- http://vallheru.svn.sourceforge.net/viewvc/vallheru/vallheru2/bank.php?r1=910&r2
FAQ
What is CVE-2007-1408?
CVE-2007-1408 is a vulnerability with a CVSS score of 10.0 (HIGH). Multiple vulnerabilities in (1) bank.php, (2) landfill.php, (3) outposts.php, (4) tribes.php, (5) house.php, (6) tribearmor.php, (7) tribeastral.php, (8) tribeware.php, and (9) includes/head.php in Ba...
How severe is CVE-2007-1408?
CVE-2007-1408 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-1408?
Check the references section above for vendor advisories and patch information. Affected products include: Vallheru Vallheru.