Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2007-1649

PHP 5.2.1 allows context-dependent attackers to read portions of heap memory by executing certain scripts with a serialized data input string beginning with S:, which does not properly track the number of input bytes being processed.

  • Published: Mar 24, 2007
  • Updated: Apr 13, 2023
  • CVE: CVE-2007-1649
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.8
  • AV:N/AC:L/Au:N/C:C/I:N/A:N

No CWE or OWASP classifications available.

Software From Fixed in
php / php 5.2.1 5.2.1.x