CVE-2007-2748 : The substr_count function in PHP 5.2.1 and earlier allows context-dependent attackers to obtain sensitive information vi

The substr_count function in PHP 5.2.1 and earlier allows context-dependent attackers to obtain sensitive information via unspecified vectors, a different affected function than CVE-2007-1375.

Published 2007-05-17 20:30:00

Updated 2018-10-19 19:03:13

Source MITRE

View at NVD, CVE.org

Vulnerability category: Information leak

Threat overview for CVE-2007-2748

Top countries where our scanners detected CVE-2007-2748

Top open port discovered on systems with this issue 80

IPs affected by CVE-2007-2748 5,176

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2007-2748!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2007-2748

Probability of exploitation activity in the next 30 days: 0.38%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 72 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2007-2748

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:P/I:N/A:N	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None

CWE ids for CVE-2007-2748

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

Assigned by: nvd@nist.gov (Primary)

Vendor statements for CVE-2007-2748

Red Hat 2008-11-26

We do not consider this flaw to be a security issue as it is only exploitable by the script author. No trust boundary is crossed. This flaw exists in versions of PHP as shipped in Red Hat Enterprise Linux 5 and Red Hat Application Stack 1. These issue did not affect the versions of PHP as shipped with Red Hat Enterprise Linux 2.1, 3, 4, or Red Hat Application Stack 2.

References for CVE-2007-2748

http://www.securityfocus.com/bid/24012

Third Party Advisory;VDB Entry
http://www.attrition.org/pipermail/vim/2007-May/001621.html

Third Party Advisory
http://www.novell.com/linux/security/advisories/2007_15_sr.html

Third Party Advisory

CVEs referencing this url
http://us2.php.net/releases/5_2_2.php

PHP: PHP 5.2.2 Release Announcement
Third Party Advisory

CVEs referencing this url
http://www.mandriva.com/security/advisories?name=MDKSA-2007:187

Third Party Advisory

CVEs referencing this url

Products affected by CVE-2007-2748

PHP » PHP
Versions up to, including, (<=) 5.2.1
cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
Matching versions