7 matches found
Gentoo Security Advisory GLSA 200605-08 (php)
The remote host is missing updates announced in advisory GLSA 200605-08. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[Full-disclosure] phpmyfaq exploit using PHP bug, CVE-2006-1490
Long time ago I made unneccesary noise about PHP zeroday. I expected it to be maybe much more dangerous that it appeared to be at end. There was lot of disscussions and one of main consensus was that this bug is not exploitable in real world because noone is using those vulnerable functions. This...
SUSE-SA:2006:024: php4,php5
The remote host is missing the patch for the advisory SUSE-SA:2006:024 php4,php5. This update fixes the following security issues in the scripting languages PHP4 and PHP5: - copy and tempnam functions could bypass openbasedir restrictions CVE-2006-1494 - Cross-Site-Scripting XSS bug in phpinfo...
php security update
CentOS Errata and Security Advisory CESA-2006:0276 Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting...
Moderate: Red Hat Security Advisory: php security update
Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...
BELL-CVE-2006-1490 CVE-2006-1490 does not affect BellSoft software
Bulletin has no description...
CVE-2006-1490
CVE-2006-1490 affects PHP up to version 5.1.3-RC1. It describes a remote information disclosure where crafted binary data sent to a script processing input in html_entity_decode may leak memory contents. The issue is labeled as a memory leak (information disclosure) rather than a true memory corr...