The stripos function in PHP before 5.1.5 has unknown impact and attack vectors related to an out-of-bounds read.
rhn.redhat.com/errata/RHSA-2006-0688.html
secunia.com/advisories/21546
secunia.com/advisories/21842
secunia.com/advisories/22331
secunia.com/advisories/22538
securitytracker.com/id?1016984
support.avaya.com/elmodocs2/security/ASA-2006-223.htm
www.mandriva.com/security/advisories?name=MDKSA-2006:162
www.php.net/release_5_1_5.php
www.securityfocus.com/bid/19582
www.ubuntu.com/usn/usn-362-1
www.vupen.com/english/advisories/2006/3318