PHP Prior libxmlrpc库缓冲区溢出漏洞

漏洞信息详情

PHP Prior libxmlrpc库缓冲区溢出漏洞

• CNNVD编号：CNNVD-200705-097
• 危害等级： 高危
  
  
• CVE编号：
  CVE-2007-1864
  
• 漏洞类型：
  
  
  缓冲区错误
  
• 发布时间：
  
  2007-05-08
  
• 威胁类型：
  
  
  远程
  
• 更新时间：
  
  2019-05-23
  
• 厂        商：
  
  php
• 漏洞来源：
  Ilia Alshanetsky a…

PHP 和捆绑的libxmlrpc库中存在缓冲区溢出漏洞。它有未知影响和远程攻击向量。

目前厂商已经发布了升级补丁以修复这个安全问题，补丁下载链接：

http://www.php.net/get/php-4.4.7-Win32.zip/from/a/mirror

来源:SECUNIA

链接:http://secunia.com/advisories/25945

来源:SECUNIA

链接:http://secunia.com/advisories/25445

来源:CONFIRM

链接:http://support.avaya.com/elmodocs2/security/ASA-2007-231.htm

来源:BID

链接:http://www.securityfocus.com/bid/23813

来源:REDHAT

链接:https://rhn.redhat.com/errata/RHSA-2007-0348.html

来源:VUPEN

链接:http://www.vupen.com/english/advisories/2007/2187

来源:SECUNIA

链接:http://secunia.com/advisories/25191

来源:REDHAT

链接:http://www.redhat.com/support/errata/RHSA-2007-0355.html

来源:SECTRACK

链接:http://www.securitytracker.com/id?1018024

来源:OSVDB

链接:http://osvdb.org/34674

来源:SECUNIA

链接:http://secunia.com/advisories/26102

来源:SECUNIA

链接:http://secunia.com/advisories/26048

来源:SECUNIA

链接:http://secunia.com/advisories/25255

来源:SECUNIA

链接:http://secunia.com/advisories/27377

来源:MANDRIVA

链接:http://www.mandriva.com/security/advisories?name=MDKSA-2007:103

来源:MANDRIVA

链接:http://www.mandriva.com/security/advisories?name=MDKSA-2007:102

来源:REDHAT

链接:http://www.redhat.com/support/errata/RHSA-2007-0349.html

来源:GENTOO

链接:http://security.gentoo.org/glsa/glsa-200705-19.xml

来源:CONFIRM

链接:http://us2.php.net/releases/4_4_7.php

来源:TRUSTIX

链接:http://www.trustix.org/errata/2007/0017/

来源:CONFIRM

链接:https://issues.rpath.com/browse/RPL-1693

来源:DEBIAN

链接:http://www.debian.org/security/2007/dsa-1331

来源:CONFIRM

链接:http://us2.php.net/releases/5_2_2.php

来源:DEBIAN

链接:http://www.debian.org/security/2007/dsa-1330

来源:SECUNIA

链接:http://secunia.com/advisories/25938

来源:SECUNIA

链接:http://secunia.com/advisories/25187

来源:SECUNIA

链接:http://secunia.com/advisories/25660

来源:SUSE

链接:http://lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.html

来源:UBUNTU

链接:http://www.ubuntu.com/usn/usn-485-1

来源:OVAL

链接:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11257