CVE-2007-2872 in PHPinfo

Summary

Multiple integer overflows in the chunk_split function in PHP 5 before 5.2.3 and PHP 4 before 4.4.8 allow remote attackers to cause a denial of service (crash) or execute arbitrary code via the (1) chunks, (2) srclen, and (3) chunklen arguments.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

05/29/2007

Disclosure

06/04/2007

Moderation

VulDB entry created

Entries

2: VDB-3534

CPE

ready

CWE

CWE-189 (Confirmed)

Exploit

Download

CVSS

7.3

EPSS

0.21049

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-2872
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-2872
CVE Details	https://www.cvedetails.com/cve/CVE-2007-2872/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!