PHP vulnerabilities

2006-03-1000:00:00

ubuntu.com

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

5.9 Medium

AI Score

Confidence

High

0.013 Low

EPSS

Percentile

86.0%

JSON

Releases

Ubuntu 5.10
Ubuntu 5.04
Ubuntu 4.10

Details

Stefan Esser discovered that the ‘session’ module did not sufficiently
verify the validity of the user-supplied session ID. A remote attacker
could exploit this to insert arbitrary HTTP headers into the response
sent by the PHP application, which could lead to HTTP Response
Splitting (forging of arbitrary responses on behalf the PHP
application) and Cross Site Scripting (XSS) (execution of arbitrary
web script code in the client’s browser) attacks. (CVE-2006-0207)

PHP applications were also vulnerable to several Cross Site Scripting
(XSS) flaws if the options ‘display_errors’ and ‘html_errors’ were
enabled. Please note that enabling ‘html_errors’ is not recommended
for production systems. (CVE-2006-0208)

OSVersionArchitecturePackageVersionFilename
Ubuntu5.10noarchlibapache2-mod-php4< *UNKNOWN
Ubuntu5.10noarchlibapache2-mod-php5< *UNKNOWN
Ubuntu5.04noarchlibapache2-mod-php4< *UNKNOWN
Ubuntu5.04noarchlibapache2-mod-php5< *UNKNOWN
Ubuntu4.10noarchlibapache2-mod-php4< *UNKNOWN
Ubuntu4.10noarchlibapache2-mod-php5< *UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	5.10	noarch	libapache2-mod-php4	< *	UNKNOWN
Ubuntu	5.10	noarch	libapache2-mod-php5	< *	UNKNOWN
Ubuntu	5.04	noarch	libapache2-mod-php4	< *	UNKNOWN
Ubuntu	5.04	noarch	libapache2-mod-php5	< *	UNKNOWN
Ubuntu	4.10	noarch	libapache2-mod-php4	< *	UNKNOWN
Ubuntu	4.10	noarch	libapache2-mod-php5	< *	UNKNOWN