5

CVE-2007-1900

CRLF injection vulnerability in the FILTER_VALIDATE_EMAIL filter in ext/filter in PHP 5.2.0 and 5.2.1 allows context-dependent attackers to inject arbitrary e-mail headers via an e-mail address with a '\n' character, which causes a regular expression to ignore the subsequent part of the address string.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
PhpPhp Version5.2.0
PhpPhp Version5.2.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.26% 0.807
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:P/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795
http://secunia.com/advisories/27037
http://www.vupen.com/english/advisories/2007/3386
http://secunia.com/advisories/25056
http://www.novell.com/linux/security/advisories/2007_32_php.html
http://secunia.com/advisories/25445
http://security.gentoo.org/glsa/glsa-200705-19.xml
http://secunia.com/advisories/25062
http://www.debian.org/security/2007/dsa-1283
http://secunia.com/advisories/25057
http://www.ubuntu.com/usn/usn-455-1
http://secunia.com/advisories/26231
http://www.trustix.org/errata/2007/0023/
http://secunia.com/advisories/27102
http://www.gentoo.org/security/en/glsa/glsa-200710-02.xml
http://secunia.com/advisories/27110
http://www.php.net/releases/5_2_3.php
http://www.vupen.com/english/advisories/2007/2016
https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00397.html
http://secunia.com/advisories/24824
Vendor Advisory
http://secunia.com/advisories/25535
http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.482863
http://www.osvdb.org/33962
http://www.php-security.org/MOPB/PMOPB-45-2007.html
Vendor Advisory
http://www.securityfocus.com/bid/23359
https://exchange.xforce.ibmcloud.com/vulnerabilities/33510
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6067