#VU110445 Input validation error in PHP - CVE-2007-1401

Cybersecurity Help s.r.o.

Published: 2018-10-16 | Updated: 2025-06-12

Vulnerability identifier: #VU110445

Vulnerability risk: Low

CVSSv4.0: 7.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2007-1401

CWE-ID: CWE-20

Exploitation vector: Local

Exploit availability: Yes

Vulnerable software:
PHP
Universal components / Libraries / Scripting languages

Vendor: PHP Group

Description

The vulnerability allows a local user to execute arbitrary code.

Buffer overflow in the crack extension (CrackLib), as bundled with PHP 4.4.6 and other versions before 5.0.0, might allow local users to gain privileges via a long argument to the crack_opendict function.

Mitigation
Install update from vendor's website.

Vulnerable software versions

PHP: 5.0

External links
https://retrogod.altervista.org/php_446_crack_opendict_local_bof.html
https://securityreason.com/securityalert/2405
https://www.securityfocus.com/archive/1/462226/100/0/threaded
https://www.exploit-db.com/exploits/3431

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

Latest bulletins with this vulnerability

Multiple vulnerabilities in PHP