Info

Last Modified

about 1 year ago

Percent Complete

90%

Disclosure

May 01, 2006

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Keywords

No Keywords

Description

PHP contains a flaw where variables will not have their data removed even after having been unset(). No further details have been provided.

Classification

Location: Unknown Location
Attack Type: Unknown
Impact: Unknown
Exploit: Exploit Unknown
Disclosure: OSVDB Verified
OSVDB: Web Related

Solution

Upgrade to version 5.1.3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

PHP Group

PHP

5.1.2

References

Security Tracker: 1016306
Secunia Advisory ID: 19927 21031 21050 21125 21135 21202 21252 21723 22225 22713
CVE ID: 2006-3017 (see also: NVD)
Related OSVDB ID: 25253 25254
Vendor Specific Advisory URL: ftp://patches.sgi.com/support/free/security/advisories/20060701-01-U.asc http://support.avaya.com/elmodocs2/security/ASA-2006-175.htm
http://www.mandriva.com/security/advisories?name=MDKSA-2006:122
Vendor URL: http://www.php.net/
Vendor Specific News/Changelog Entry: http://www.php.net/release_5_1_3.php
Other Advisory URL: http://www.ubuntu.com/usn/usn-320-1
http://www.us.debian.org/security/2006/dsa-1206
https://issues.rpath.com/browse/RPL-683
RedHat RHSA: RHSA-2006:0549 RHSA-2006:0567 RHSA-2006:0568

Tools & Filters

Nessus	22044 22053 22110 22299 22310 23655 27897

Credit

Unknown or Incomplete

Blogs

Provided by Technorati

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

DONATE NOW!

User Status

Account
- Login
- Sign-Up

Quick Searches