Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2007-1886

EPSS 0.84% · P75
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2007-1886

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Integer overflow in the str_replace function in PHP 4.4.5 and PHP 5.2.1 allows context-dependent attackers to have an unknown impact via a single character search string in conjunction with a single character replacement string, which causes an "off by one overflow."
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
PHP str_replace()函数整数溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
PHP是广泛使用的通用目的脚本语言,特别适合于Web开发,可嵌入到HTML中。 PHP的str_replace()函数实现上存在整数溢出漏洞,本地攻击者可能利用此漏洞提升自己的权限。 在调用PHP的str_replace()函数时代码会切换到两个不同的代码路径,具体取决于搜索字符串的长度。单字符搜索字符串是由不同函数来处理的,以提高效率,但这种方法的以下代码中存在整数溢出漏洞: Z_STRLEN_P(result) = len + (char_count * (to_len - 1)); Z_STRVAL
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2007-1886

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2007-1886

登录查看更多情报信息。

Same Patch Batch · n/a · 2007-04-06 · 26 CVEs total

CVE-2007-1887PHP sqlite_udf_decode_binary()函数提升权限漏洞
CVE-2007-1881Kaspersky Anti-Virus 本地权限提升漏洞
CVE-2007-1880Kaspersky Internet Security套件Klif.SYS驱动本地堆溢出漏洞
CVE-2007-1879Kaspersky AntiVirus SysInfo ActiveX控件任意文件泄露漏洞
CVE-2007-1878FireBug跨站脚本执行漏洞
CVE-2007-1271VMware ESX Server缓冲区溢出漏洞
CVE-2007-1270VMware ESX Server Double free漏洞
CVE-2007-1112Kaspersky AntiVirus SysInfo ActiveX控件任意文件泄露漏洞
CVE-2007-1001Mac OS X PHP实现攻击漏洞
CVE-2007-0445Kaspersky AntiVirus杀毒引擎ARJ文档解析堆溢出漏洞
CVE-2007-1890PHP msg_receive()内存分配整数溢出漏洞
CVE-2007-1889PHP msg_receive()函数整数溢出漏洞
CVE-2007-1888PHP sqlite_udf_decode_binary()函数缓冲区溢出漏洞
CVE-2007-0956MIT Kerberos 5 Telnet守护程序认证绕过漏洞
CVE-2007-1885PHP str_replace()函数整数溢出漏洞
CVE-2007-1884PHP Printf()函数多个整数符号类型错误漏洞
CVE-2007-1883PHP 敏感信息泄露漏洞
CVE-2007-1882HP Mercury Quality Center 'qcbin/servlet/tdservlet/TDAPI_GeneralWebTreatment' SQL注入漏洞
CVE-2007-1684SolidWorks SLDimdownload ActiveX控件任意程序执行漏洞
CVE-2007-1680雅虎通音频会议ActiveX控件远程栈溢出漏洞

Showing top 20 of 26 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2007-1886

No comments yet

Leave a comment