CVE-2007-3007

Name: CVE-2007-3007
Creator: NVD / NIST
Published: 2007-06-04T17:30:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 2.70%

Last modified Jun 16, 2026

CVE-2007-3007 is a vulnerability of currently unknown severity. PHP 5 before 5.2.3 does not enforce the open_basedir or safe_mode restriction in certain cases, which allows context-dependent attackers to determine the existence of arbitrary files by checking if the readfile function returns a string. NOTE: this issue might also involve the realpath function.. EPSS estimates a 2.70% chance of exploitation in the next 30 days.

Description

PHP 5 before 5.2.3 does not enforce the open_basedir or safe_mode restriction in certain cases, which allows context-dependent attackers to determine the existence of arbitrary files by checking if the readfile function returns a string. NOTE: this issue might also involve the realpath function.

Metrics

EPSS Probability

2.70%

84.0th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-264

Affected Software

Vendor	Product	Versions
Php	Php	>= 5.0.0, < 5.2.3

References

http://bugs.php.net/bug.php?id=41492Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.htmlMailing List, Third Party Advisory
http://osvdb.org/36084Broken Link
http://secunia.com/advisories/25456Vendor Advisory
http://secunia.com/advisories/26048Vendor Advisory
http://secunia.com/advisories/26231Vendor Advisory
http://secunia.com/advisories/27102Vendor Advisory
http://secunia.com/advisories/27110Vendor Advisory
http://www.gentoo.org/security/en/glsa/glsa-200710-02.xmlThird Party Advisory
http://www.php.net/releases/5_2_3.phpVendor Advisory
http://www.securityfocus.com/bid/24259Third Party Advisory, VDB Entry
http://www.trustix.org/errata/2007/0023/Broken Link
https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00397.htmlThird Party Advisory
http://bugs.php.net/bug.php?id=41492Vendor Advisory
http://lists.opensuse.org/opensuse-security-announce/2007-07/msg00006.htmlMailing List, Third Party Advisory
http://osvdb.org/36084Broken Link
http://secunia.com/advisories/25456Vendor Advisory
http://secunia.com/advisories/26048Vendor Advisory
http://secunia.com/advisories/26231Vendor Advisory
http://secunia.com/advisories/27102Vendor Advisory
http://secunia.com/advisories/27110Vendor Advisory
http://www.gentoo.org/security/en/glsa/glsa-200710-02.xmlThird Party Advisory
http://www.php.net/releases/5_2_3.phpVendor Advisory
http://www.securityfocus.com/bid/24259Third Party Advisory, VDB Entry
http://www.trustix.org/errata/2007/0023/Broken Link
https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00397.htmlThird Party Advisory

Timeline

Published: Jun 4, 2007
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2007-3007?

How severe is CVE-2007-3007?

Severity scoring for CVE-2007-3007 is pending analysis. The EPSS model estimates a 2.70% probability of exploitation in the next 30 days.

How do I fix CVE-2007-3007?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2007-3007?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST