CVE-2007-1583

Impact:
Low
Public Date:
2007-03-20
Bugzilla:
1618303: CVE-2007-1583 security flaw

The MITRE CVE dictionary describes this issue as:

The mb_parse_str function in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 sets the internal register_globals flag and does not disable it in certain cases when a script terminates, which allows remote attackers to invoke available PHP scripts with register_globals functionality that is not detectable by these scripts, as demonstrated by forcing a memory_limit violation.

Find out more about CVE-2007-1583 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 3 (php) RHSA-2007:0155 2007-04-16
Red Hat Application Stack v1 for Enterprise Linux AS (v.4) (php) RHSA-2007:0162 2007-04-16
Red Hat Enterprise Linux 4 (php) RHSA-2007:0155 2007-04-16
Red Hat Enterprise Linux 5 (php) RHSA-2007:0153 2007-04-20

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact Red Hat Product Security.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.