10 matches found
SUSE-SA:2005:069: php4,php5
The remote host is missing the patch for the advisory SUSE-SA:2005:069 php4,php5. Updated PHP packages fix the following security issues: - Stefan Esser found out that a bug in parsestr could lead to activation of registerglobals CVE-2005-3389 and additionally that file uploads could overwrite...
Fedora Core 3 : php-4.3.11-2.8 (2005-1061)
This update includes several security fixes : - fixes for prevent malicious requests from overwriting the GLOBALS array CVE-2005-3390 - a fix to stop the parsestr function from enabling the registerglobals setting CVE-2005-3389 - fixes for Cross-Site Scripting flaws in the phpinfo output...
RHEL 2.1 : php (RHSA-2005:838)
Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 2.1 This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. ...
RHEL 3 / 4 : php (RHSA-2005:831)
Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...
php security update
CentOS Errata and Security Advisory CESA-2005:1110-001 Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded...
php security update
CentOS Errata and Security Advisory CESA-2005:838-01 Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 2.1 This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting...
Moderate: Red Hat Security Advisory: php security update
Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...
CVE-2005-3389
The parsestr function in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5, when called with only one parameter, allows remote attackers to enable the registerglobals directive via inputs that cause a request to be terminated due to the memorylimit setting, which causes PHP to set an internal flag that...
CVE-2005-3389
The parsestr function in PHP 4.x up to 4.4.0 and 5.x up to 5.0.5, when called with only one parameter, allows remote attackers to enable the registerglobals directive via inputs that cause a request to be terminated due to the memorylimit setting, which causes PHP to set an internal flag that...
CVE-2005-3389
Technical details about CVE-2005-3389 (affected PHP versions, exploit scenarios, and patches) are not publicly provided in the connected documents. Monitor for updates from vendors/OSVs for concrete remediation status.