Unrated severityNVD Advisory· Published Mar 16, 2007· Updated Jun 16, 2026
CVE-2007-1484
CVE-2007-1484
Description
The array_user_key_compare function in PHP 4.4.6 and earlier, and 5.x up to 5.2.1, makes erroneous calls to zval_dtor, which triggers memory corruption and allows local users to bypass safe_mode and execute arbitrary code via a certain unset operation after array_user_key_compare has been called.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
16- www.php-security.org/MOPB/MOPB-24-2007.htmlnvdExploitThird Party Advisory
- docs.info.apple.com/article.htmlnvdThird Party Advisory
- lists.apple.com/archives/security-announce//2007/Jul/msg00004.htmlnvdMailing ListThird Party Advisory
- secunia.com/advisories/24542nvdThird Party Advisory
- secunia.com/advisories/25056nvdThird Party Advisory
- secunia.com/advisories/25057nvdThird Party Advisory
- secunia.com/advisories/25445nvdThird Party Advisory
- secunia.com/advisories/26235nvdThird Party Advisory
- security.gentoo.org/glsa/glsa-200705-19.xmlnvdThird Party Advisory
- us2.php.net/releases/4_4_7.phpnvdThird Party Advisory
- us2.php.net/releases/5_2_2.phpnvdThird Party Advisory
- www.securityfocus.com/bid/22990nvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/25159nvdThird Party AdvisoryVDB Entry
- www.ubuntu.com/usn/usn-455-1nvdThird Party Advisory
- www.vupen.com/english/advisories/2007/2732nvdThird Party Advisory
- www.novell.com/linux/security/advisories/2007_32_php.htmlnvdBroken Link
News mentions
0No linked articles in our index yet.