Description

The ovrimos_longreadlen function in the Ovrimos extension for PHP before 4.4.5 allows context-dependent attackers to write to arbitrary memory locations via the result_id and length arguments.

Remediation

References

CVE-2007-1378

Related Vulnerabilities

MediaWiki Improper Access Control Vulnerability (CVE-2015-8008)

WordPress Plugin Elementor Website Builder Unspecified Vulnerability (1.8.8)

WordPress Plugin Site Reviews Multiple Vulnerabilities (6.5.1)

WordPress 2.3.1 Unauthorized Post Access Vulnerability (2.3.1)

Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-8447)

Severity

Medium

Classification

CVE-2007-1378

Tags

Missing Update Known Vulnerabilities