CVE-2007-2509

Impact:
Low
Public Date:
2007-05-03
Bugzilla:
239014: CVE-2007-2509 php CRLF injection

The MITRE CVE dictionary describes this issue as:

CRLF injection vulnerability in the ftp_putcmd function in PHP before 4.4.7, and 5.x before 5.2.2 allows remote attackers to inject arbitrary FTP commands via CRLF sequences in the parameters to earlier FTP commands.

Find out more about CVE-2007-2509 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Application Stack v1 for Enterprise Linux AS (v.4) (php) RHSA-2007:0355 2007-05-10
Red Hat Enterprise Linux 2.1 (php) RHSA-2007:0888 2007-10-23
Red Hat Enterprise Linux 3 (php) RHSA-2007:0889 2007-09-26
Red Hat Enterprise Linux 4 (php) RHSA-2007:0349 2007-05-09
Red Hat Enterprise Linux 5 (php) RHSA-2007:0348 2007-05-08
Last Modified

CVE description copyright © 2017, The MITRE Corporation