Description

The ovrimos_longreadlen function in the Ovrimos extension for PHP before 4.4.5 allows context-dependent attackers to write to arbitrary memory locations via the result_id and length arguments.

Remediation

References

CVE-2007-1378

Related Vulnerabilities

b2evolution Improper Input Validation Vulnerability (CVE-2017-1000423)

Python Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2019-18348)

WordPress 5.0.x Multiple Vulnerabilities (5.0 - 5.0.17)

WordPress Plugin Polldaddy Polls & Ratings Cross-Site Scripting (2.0.24)

WordPress Plugin HTTP Headers Multiple Vulnerabilities (1.9.1)

Severity

Medium

Classification

CVE-2007-1378

Tags

Missing Update Known Vulnerabilities