Description

Buffer overflow in the crack extension (CrackLib), as bundled with PHP 4.4.6 and other versions before 5.0.0, might allow local users to gain privileges via a long argument to the crack_opendict function.

Remediation

References

CVE-2007-1401

Related Vulnerabilities

CrushFTP Server Deserialization of Untrusted Data Vulnerability (CVE-2017-14035)

WordPress Plugin Schreikasten SQL Injection (0.14.18)

WordPress Plugin SEO by Squirrly SEO SQL Injection (12.3.19)

Apache HTTP Server Other Vulnerability (CVE-2004-0885)

SharePoint Out-of-bounds Write Vulnerability (CVE-2012-2539)

Severity

Medium

Classification

CVE-2007-1401

Tags

Missing Update Known Vulnerabilities