Red Hat announced one new security update this morning: RHSA-2007:0355.
RHSA-2007:0355 Important: php security update
This update addresses several security flaws in the PHP package for Red Hat Application Stack v1 for Enterprise Linux AS (v.4). A list of vulnerabilities is included below. The Red Hat Security Response Team has rated this update as having important security impact. More details can be found on the Red Hat Network.
| CVE-2007-1864 | A buffer overflow in the ‘xmlrpc’ extension could allow a remote user to execute aribtrary code as the ‘apache’ user. |
| CVE-2007-2509 | A flaw in the ‘ftp’ extension could allow a remote user to send aribtrary FTP commands to a private server. |
| CVE-2007-2510 | A buffer overflow in the ’soap’ extension exists involving an HTTP redirect response when a SOAP client uses an untrusted SOAP server. |
Get Slaptijack updates delivered to your Inbox or RSS Reader for free!
Leave a Reply