CVE-2007-2509

Impact:
Low
Public Date:
2007-05-03
Bugzilla:
239014: CVE-2007-2509 php CRLF injection

The MITRE CVE dictionary describes this issue as:

CRLF injection vulnerability in the ftp_putcmd function in PHP before 4.4.7, and 5.x before 5.2.2 allows remote attackers to inject arbitrary FTP commands via CRLF sequences in the parameters to earlier FTP commands.

Find out more about CVE-2007-2509 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Application Stack v1 for Enterprise Linux AS (v.4) (php) RHSA-2007:0355 2007-05-10
Red Hat Enterprise Linux 2.1 (php) RHSA-2007:0888 2007-10-23
Red Hat Enterprise Linux 3 (php) RHSA-2007:0889 2007-09-26
Red Hat Enterprise Linux 4 (php) RHSA-2007:0349 2007-05-09
Red Hat Enterprise Linux 5 (php) RHSA-2007:0348 2007-05-08

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact Red Hat Product Security.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.