Montavista
Got a hot project?  Login
  • NETWORK INFRASTRUCTURE
  • OFFICE AUTOMATION
  • MEDICAL
  • ENGINEERING SERVICES
  • COMPANY

CVE Vulnerabilities
  • CVE-2012
  • CVE-2011
  • CVE-2010
  • CVE-2009
  • CVE-2008
  • CVE-2007
  • CVE-2006
  • CVE-2005
  • CVE-2004
  • CVE-2003
CVE-2007-3799

Severity : Medium
Published : 2007-07-16
Modified : 2011-06-14
Base Score : 4.3
Details : The session_start function in ext/session in PHP 4.x up to 4.4.7 and 5.x up to 5.2.3 allows remote attackers to insert arbitrary attributes into the session cookie via special characters in a cookie that is obtained from (1) PATH_INFO, (2) the session_id function, and (3) the session_start function, which are not encoded or filtered when the new session cookie is generated, a related issue to CVE-2006-0207.
Product/Version : Pro 5.0  
Mobilinux 5.0.24  
MVL 5 Atom  
CGE 5.x  
Mobilinux 5.x  
Pro 5.0.24  
MVL 5 OMAP3  
MVL 5 OMAP3530  
 
 
 


CVE Vulnerabilities List CVE-2007
CVE-2007-6716CVE-2007-6694CVE-2007-6422CVE-2007-6421
CVE-2007-6420CVE-2007-6417CVE-2007-6388CVE-2007-6203
CVE-2007-6200CVE-2007-6199CVE-2007-6151CVE-2007-6067
CVE-2007-5966CVE-2007-5794CVE-2007-5269CVE-2007-5116
CVE-2007-5093CVE-2007-5000CVE-2007-4826CVE-2007-4772
CVE-2007-4769CVE-2007-4657CVE-2007-4573CVE-2007-4567
CVE-2007-4091CVE-2007-3998CVE-2007-3806CVE-2007-3799
CVE-2007-3374CVE-2007-3108CVE-2007-3107CVE-2007-2953
CVE-2007-2876CVE-2007-2451CVE-2007-2438CVE-2007-2242
CVE-2007-2165CVE-2007-1863CVE-2007-1718CVE-2007-1536
CVE-2007-1286CVE-2007-1218CVE-2007-1217CVE-2007-1001
CVE-2007-0988CVE-2007-0910CVE-2007-0248CVE-2007-0247
CVE-2007-0062


Locations | Careers | Privacy Policy     
© 2013 MontaVista Software, LLC. All Rights Reserved