Unrated severityNVD Advisory· Published Jul 17, 2007· Updated Apr 23, 2026
CVE-2007-3806
CVE-2007-3806
Description
The glob function in PHP 5.2.3 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an invalid value of the flags parameter, probably related to memory corruption or an invalid read on win32 platforms, and possibly related to lack of initialization for a glob structure.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
18- secunia.com/advisories/26085nvdVendor Advisory
- secunia.com/advisories/26642nvdVendor Advisory
- secunia.com/advisories/27102nvdVendor Advisory
- secunia.com/advisories/30158nvdVendor Advisory
- secunia.com/advisories/30288nvdVendor Advisory
- www.vupen.com/english/advisories/2007/2547nvdVendor Advisory
- cvs.php.net/viewvc.cgi/php-src/ext/standard/dir.cnvd
- cvs.php.net/viewvc.cgi/php-src/ext/standard/dir.cnvd
- osvdb.org/36085nvd
- www.debian.org/security/2008/dsa-1572nvd
- www.debian.org/security/2008/dsa-1578nvd
- www.exploit-db.com/exploits/4181nvd
- www.gentoo.org/security/en/glsa/glsa-200710-02.xmlnvd
- www.php.net/ChangeLog-5.phpnvd
- www.php.net/releases/5_2_4.phpnvd
- www.securityfocus.com/bid/24922nvd
- www.securityfocus.com/bid/25498nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/35437nvd
News mentions
0No linked articles in our index yet.