Description

The ovrimos_close function in the Ovrimos extension for PHP before 4.4.5 can trigger efree of an arbitrary address, which might allow context-dependent attackers to execute arbitrary code.

Remediation

References

CVE-2007-1379

Related Vulnerabilities

WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.17.29)

WordPress Plugin BetterDocs-Best Documentation & Knowledge Base Cross-Site Scripting (1.9.1)

WordPress Plugin Search Everything Cross-Site Request Forgery (8.1)

WebLogic Other Vulnerability (CVE-2020-10673)

WordPress Plugin WP Survey And Quiz Tool 'rowcount' Parameter Cross-Site Scripting (2.9.2)

Severity

Medium

Classification

CVE-2007-1379

Tags

Missing Update Known Vulnerabilities