PHP unset() Function Variable Persistence

2006-05-01T00:00:00
ID OSVDB:25255
Type osvdb
Reporter OSVDB
Modified 2006-05-01T00:00:00

Description

Vulnerability Description

PHP contains a flaw where variables will not have their data removed even after having been unset(). No further details have been provided.

Solution Description

Upgrade to version 5.1.3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

PHP contains a flaw where variables will not have their data removed even after having been unset(). No further details have been provided.

References:

Vendor URL: http://www.php.net/ Vendor Specific News/Changelog Entry: http://www.php.net/release_5_1_3.php Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Security Tracker: 1016306 Secunia Advisory ID:19927 Secunia Advisory ID:22713 Secunia Advisory ID:21050 Secunia Advisory ID:22225 Secunia Advisory ID:21125 Secunia Advisory ID:21135 Secunia Advisory ID:21202 Secunia Advisory ID:21252 Secunia Advisory ID:21031 Secunia Advisory ID:21723 Related OSVDB ID: 25253 Related OSVDB ID: 25254 RedHat RHSA: RHSA-2006:0567 RedHat RHSA: RHSA-2006:0549 RedHat RHSA: RHSA-2006:0568 Other Advisory URL: http://www.ubuntu.com/usn/usn-320-1 Other Advisory URL: https://issues.rpath.com/browse/RPL-683 Other Advisory URL: http://www.us.debian.org/security/2006/dsa-1206 CVE-2006-3017