CVE-2007-2079 - OpenCVE

The ADONewConnection Connect function in adodb.php in XAMPP 1.6.0a and earlier for Windows uses untrusted input for the database server hostname, which allows remote attackers to trigger a library buffer overflow and execute arbitrary code via a long host parameter, or have other unspecified impact. NOTE: it could be argued that this is an issue in mssql_connect (CVE-2007-1411.1) in PHP, or an issue in the ADOdb Library, and the proper fix should be in one of these products; if so, then this should not be treated as a vulnerability in XAMPP.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:M/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Xampp	Apache Distribution

Configuration 1 [-]

cpe:2.3:a:xampp:apache_distribution:*:*:windows:*:*:*:*:*

No data.

References

Link	Providers
http://osvdb.org/41594
http://www.securityfocus.com/bid/23491
https://exchange.xforce.ibmcloud.com/vulnerabilities/33683
https://www.exploit-db.com/exploits/3738

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-04-18T02:20:00

Updated: 2024-08-07T13:23:49.972Z

Reserved: 2007-04-17T00:00:00

Link: CVE-2007-2079

Vulnrichment

No data.

NVD

Status : Modified

Published: 2007-04-18T03:19:00.000

Modified: 2017-10-11T01:32:05.830

Link: CVE-2007-2079

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-04-15T00:00:00", "descriptions": [{"lang": "en", "value": "The ADONewConnection Connect function in adodb.php in XAMPP 1.6.0a and earlier for Windows uses untrusted input for the database server hostname, which allows remote attackers to trigger a library buffer overflow and execute arbitrary code via a long host parameter, or have other unspecified impact. NOTE: it could be argued that this is an issue in mssql_connect (CVE-2007-1411.1) in PHP, or an issue in the ADOdb Library, and the proper fix should be in one of these products; if so, then this should not be treated as a vulnerability in XAMPP."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-10-10T00:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "xampp-mssqlconnect-bo(33683)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33683"}, {"name": "41594", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/41594"}, {"name": "3738", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "https://www.exploit-db.com/exploits/3738"}, {"name": "23491", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/23491"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-2079", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The ADONewConnection Connect function in adodb.php in XAMPP 1.6.0a and earlier for Windows uses untrusted input for the database server hostname, which allows remote attackers to trigger a library buffer overflow and execute arbitrary code via a long host parameter, or have other unspecified impact. NOTE: it could be argued that this is an issue in mssql_connect (CVE-2007-1411.1) in PHP, or an issue in the ADOdb Library, and the proper fix should be in one of these products; if so, then this should not be treated as a vulnerability in XAMPP."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "xampp-mssqlconnect-bo(33683)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33683"}, {"name": "41594", "refsource": "OSVDB", "url": "http://osvdb.org/41594"}, {"name": "3738", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/3738"}, {"name": "23491", "refsource": "BID", "url": "http://www.securityfocus.com/bid/23491"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T13:23:49.972Z"}, "title": "CVE Program Container", "references": [{"name": "xampp-mssqlconnect-bo(33683)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33683"}, {"name": "41594", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/41594"}, {"name": "3738", "tags": ["exploit", "x_refsource_EXPLOIT-DB", "x_transferred"], "url": "https://www.exploit-db.com/exploits/3738"}, {"name": "23491", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/23491"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-2079", "datePublished": "2007-04-18T02:20:00", "dateReserved": "2007-04-17T00:00:00", "dateUpdated": "2024-08-07T13:23:49.972Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:xampp:apache_distribution:*:*:windows:*:*:*:*:*", "matchCriteriaId": "ACAB22B5-2307-46EC-ADE3-5974AD96FA52", "versionEndIncluding": "1.6.0a", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The ADONewConnection Connect function in adodb.php in XAMPP 1.6.0a and earlier for Windows uses untrusted input for the database server hostname, which allows remote attackers to trigger a library buffer overflow and execute arbitrary code via a long host parameter, or have other unspecified impact. NOTE: it could be argued that this is an issue in mssql_connect (CVE-2007-1411.1) in PHP, or an issue in the ADOdb Library, and the proper fix should be in one of these products; if so, then this should not be treated as a vulnerability in XAMPP."}, {"lang": "es", "value": "La funci\u00f3n ADONewConnection Connect en adodb.php de XAMPP 1.6.0a y anteriores para Windows utiliza una entrada que no es de confianza para el nombre de la m\u00e1quina servidora de base de datos, lo cual permite a atacantes remotos provocar un desbordamiento de b\u00fafer de librer\u00eda y ejecutar c\u00f3digo de su elecci\u00f3n mediante par\u00e1metro host largo, o tener otro impacto desconocido. NOTA: se podr\u00eda argumentar que este asunto es relativo a mssql_connect (CVE-2007-1411.1) en PHP, o a la librer\u00eda ADOdb, y la soluci\u00f3n adecuada deber\u00eda estar en uno de estos productos; si as\u00ed fuera, esta no deber\u00eda ser tratada como una vulnerabilidad en XAMPP."}], "evaluatorImpact": "Failed exploit attempts will likely crash the webserver, denying service to legitimate users. Additionally, this issue is remotely exploitable only if the installation is not secured as described in the manual.", "id": "CVE-2007-2079", "lastModified": "2017-10-11T01:32:05.830", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-04-18T03:19:00.000", "references": [{"source": "cve@mitre.org", "url": "http://osvdb.org/41594"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/23491"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33683"}, {"source": "cve@mitre.org", "url": "https://www.exploit-db.com/exploits/3738"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}