CVE-2007-1584
published 2007-03-21CVE-2007-1584: Buffer underflow in the header function in PHP 5.2.0 allows context-dependent attackers to execute arbitrary code by passing an all-whitespace string to this…
PriorityP337medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
5.25%
91.5th percentile
Buffer underflow in the header function in PHP 5.2.0 allows context-dependent attackers to execute arbitrary code by passing an all-whitespace string to this function, which causes it to write '\0' characters in whitespace that precedes the string.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| php | php | — | — |
CVSS provenance
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
vendor_redhat5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-vg6p-3jwr-25mv: Buffer underflow in the header function in PHP 5
ghsa_unreviewed·2022-05-01
CVE-2007-1584 [MEDIUM] GHSA-vg6p-3jwr-25mv: Buffer underflow in the header function in PHP 5
Buffer underflow in the header function in PHP 5.2.0 allows context-dependent attackers to execute arbitrary code by passing an all-whitespace string to this function, which causes it to write '\0' characters in whitespace that precedes the string.
Red Hat
CVE-2007-1584: Buffer underflow in the header function in PHP 5
vendor_redhat·CVSS 5.0
CVE-2007-1584 [MEDIUM] CVE-2007-1584: Buffer underflow in the header function in PHP 5
Buffer underflow in the header function in PHP 5.2.0 allows context-dependent attackers to execute arbitrary code by passing an all-whitespace string to this function, which causes it to write '\0' characters in whitespace that precedes the string.
Statement: This CVE name is a duplicate as the vulnerability is addressed by CVE-2007-0907.
No detection rules found.
Exploit-DB
PHP 5.2.0 (OSX) - 'header()' Space Trimming Buffer Underflow
exploitdb·2007-03-19
CVE-2007-1584 PHP 5.2.0 (OSX) - 'header()' Space Trimming Buffer Underflow
PHP 5.2.0 (OSX) - 'header()' Space Trimming Buffer Underflow
---
# milw0rm.com [2007-03-19]
Exploit-DB
PHP 5.2.0 (OSX) - EXT/Filter Space Trimming Buffer Underflow
exploitdb·2007-03-12
CVE-2007-1584 PHP 5.2.0 (OSX) - EXT/Filter Space Trimming Buffer Underflow
PHP 5.2.0 (OSX) - EXT/Filter Space Trimming Buffer Underflow
---
# milw0rm.com [2007-03-12]
CWE
Buffer Underwrite ('Buffer Underflow')
mitre_cwe
CWE-124 Buffer Underwrite ('Buffer Underflow')
CWE-124: Buffer Underwrite ('Buffer Underflow')
The product writes to a buffer using an index or pointer that references a memory location prior to the beginning of the buffer.
Modes of Introduction:
Phase: Implementation
Note: This typically occurs when a pointer or its index is decremented to a position before the buffer, when pointer arithmetic results in a position before the beginning of the valid memory location, or when a negative index is used.
Common Consequences:
Scope: Integrity, Availability. Impact: Modify Memory, DoS: Crash, Exit, or Restart. Out of bounds memory access will very likely result in the corruption of relevant memory, and perhaps instructions, possibly leading to a crash.
Scope: Integrity, Confidentiality, Availability, Access Control, Other. Impact: Execute U
CWE
Access of Memory Location Before Start of Buffer
mitre_cwe
CWE-786 Access of Memory Location Before Start of Buffer
CWE-786: Access of Memory Location Before Start of Buffer
The product reads or writes to a buffer using an index or pointer that references a memory location prior to the beginning of the buffer.
This typically occurs when a pointer or its index is decremented to a position before the buffer, when pointer arithmetic results in a position before the beginning of the valid memory location, or when a negative index is used.
Modes of Introduction:
Phase: Implementation
Common Consequences:
Scope: Confidentiality. Impact: Read Memory. For an out-of-bounds read, the attacker may have access to sensitive information. If the sensitive information contains system details, such as the current buffer's position in memory, this knowledge can be used to craft further attacks, possibly with more sev
2007-03-21
Published