Description

The ovrimos_longreadlen function in the Ovrimos extension for PHP before 4.4.5 allows context-dependent attackers to write to arbitrary memory locations via the result_id and length arguments.

Remediation

References

CVE-2007-1378

Related Vulnerabilities

WordPress Plugin UpdraftPlus WordPress Backup Cross-Site Scripting (1.22.8)

Apache Tomcat Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-4444)

Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-42627)

WordPress Plugin Shariff Wrapper Local File Inclusion (4.6.13)

WordPress Plugin Thrive Clever Widgets Security Bypass (1.56)

Severity

Medium

Classification

CVE-2007-1378

Tags

Missing Update Known Vulnerabilities