Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-1285

CWE-674 — Uncontrolled Recursion CWE-119 — Buffer Overflow11 documents7 sources

Severity

7.5HIGH

EPSS

6.8%

top 8.67%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

PHP PHP Canonical Ubuntu Linux Novell Suse Linux +4 more

Timeline

PublishedMar 6

Latest updateMay 1

Description

The Zend Engine in PHP 4.x before 4.4.7, and 5.x before 5.2.2, allows remote attackers to cause a denial of service (stack exhaustion and PHP crash) via deeply nested arrays, which trigger deep recursion in the variable destruction routines.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages6 packages

▶NVDphp/php4.0.0 — 4.4.7+1

▶NVDnovell/suse_linux10.0, 10.1+1

▶NVDsuse/linux_enterprise_server10, 8+1

▶NVDredhat/enterprise_linux_server2.0, 3.0, 4.0+2

▶NVDredhat/enterprise_linux_desktop3.0, 4.0+1

Also affects: Ubuntu Linux 7.10

🔴Vulnerability Details

GHSA

GHSA-jhxw-fqxp-j75j: The Zend Engine in PHP 4↗2022-05-01

▶

CVEList

CVE-2007-1285: The Zend Engine in PHP 4↗2007-03-06

▶

💥Exploits & PoCs

Exploit-DB

PHP 3/4/5 - ZendEngine Variable Destruction Remote Denial of Service↗2007-03-01

▶

📋Vendor Advisories

Ubuntu

PHP vulnerabilities↗2007-11-29

▶

Red Hat

php malformed cookie handling↗2007-08-30

▶

Red Hat

security flaw↗2007-03-01

▶

💬Community

Bugzilla

CVE-2007-1285 security flaw↗2018-08-16

▶

Bugzilla

CVE-2007-1285 Multiple PHP issues (CVE-2007-1286, CVE-2007-1711)↗2007-04-05

▶

Bugzilla

CVE-2007-1285 PHP Variable Destructor Deep Recursion Stack Overflow↗2007-03-09

▶

Bugzilla

CVE-2007-1285 "Month of PHP Bugs" security issues (CVE-2007-1286 CVE-2007-1583 CVE-2007-1711 CVE-2007-1718)↗2007-03-01

▶