Lucene search

K
cvelistRedhatCVELIST:CVE-2006-1490
HistoryMar 29, 2006 - 9:00 p.m.

CVE-2006-1490

2006-03-2921:00:00
redhat
www.cve.org

6 Medium

AI Score

Confidence

Low

0.247 Low

EPSS

Percentile

96.7%

PHP before 5.1.3-RC1 might allow remote attackers to obtain portions of memory via crafted binary data sent to a script that processes user input in the html_entity_decode function and sends the encoded results back to the client, aka a “binary safety” issue. NOTE: this issue has been referred to as a “memory leak,” but it is an information leak that discloses memory contents.

References

6 Medium

AI Score

Confidence

Low

0.247 Low

EPSS

Percentile

96.7%