CVE Vulnerabilities

CVE-2007-1584

Published: Mar 21, 2007 | Modified: Oct 11, 2017

CVSS 3.x

N/A

Source:

NVD

CVSS 2.x

6.8 MEDIUM

RedHat/V2

RedHat/V3

Ubuntu

Additional information

NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-1584
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html

Buffer underflow in the header function in PHP 5.2.0 allows context-dependent attackers to execute arbitrary code by passing an all-whitespace string to this function, which causes it to write 0 characters in whitespace that precedes the string.

Affected Software

Name	Vendor	Start Version	End Version
Php	Php	5.2.0 (including)	5.2.0 (including)

References

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.