CVE-2006-5465

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Buffer overflow in PHP before 5.2.0 allows remote attackers to execute arbitrary code via crafted UTF-8 inputs to the (1) htmlentities or (2) htmlspecialchars functions.

References

ftp://patches.sgi.com/support/free/security/advisories/20061101-01-P

http://docs.info.apple.com/article.html?artnum=304829

http://issues.rpath.com/browse/RPL-761

http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html

http://rhn.redhat.com/errata/RHSA-2006-0736.html

http://secunia.com/advisories/22653

http://secunia.com/advisories/22685

http://secunia.com/advisories/22688

http://secunia.com/advisories/22693

http://secunia.com/advisories/22713

http://secunia.com/advisories/22753

http://secunia.com/advisories/22759

http://secunia.com/advisories/22779

http://secunia.com/advisories/22881

http://secunia.com/advisories/22929

http://secunia.com/advisories/23139

http://secunia.com/advisories/23155

http://secunia.com/advisories/23247

http://secunia.com/advisories/24606

http://secunia.com/advisories/25047

http://security.gentoo.org/glsa/glsa-200703-21.xml

http://securitytracker.com/id?1017152

http://securitytracker.com/id?1017296

http://support.avaya.com/elmodocs2/security/ASA-2006-245.htm

http://www.cisco.com/en/US/products/products_security_response09186a008082c4fe.html

http://www.cisco.com/warp/public/707/cisco-air-20070425-http.shtml

http://www.debian.org/security/2006/dsa-1206

http://www.hardened-php.net/advisory_132006.138.html

http://www.mandriva.com/security/advisories?name=MDKSA-2006:196

http://www.novell.com/linux/security/advisories/2006_67_php.html

http://www.openpkg.com/security/advisories/OpenPKG-SA-2006.028.html

http://www.php.net/releases/5_2_0.php

http://www.redhat.com/support/errata/RHSA-2006-0730.html

http://www.redhat.com/support/errata/RHSA-2006-0731.html

http://www.securityfocus.com/archive/1/450431/100/0/threaded

http://www.securityfocus.com/archive/1/451098/100/0/threaded

http://www.securityfocus.com/archive/1/453024/100/0/threaded

http://www.securityfocus.com/bid/20879

http://www.trustix.org/errata/2006/0061/

http://www.turbolinux.com/security/2006/TLSA-2006-38.txt

http://www.ubuntu.com/usn/usn-375-1

http://www.us-cert.gov/cas/techalerts/TA06-333A.html

http://www.vupen.com/english/advisories/2006/4317

http://www.vupen.com/english/advisories/2006/4749

http://www.vupen.com/english/advisories/2006/4750

http://www.vupen.com/english/advisories/2007/1546

https://exchange.xforce.ibmcloud.com/vulnerabilities/29971

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10240

Details

Source: MITRE

Published: 2006-11-04

Updated: 2018-10-30

Risk Information

CVSS v2

Base Score: 7.5

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 10

Severity: HIGH

Tenable Plugins

View all (12 total)

IDNameProductFamilySeverity
67421Oracle Linux 4 : php (ELSA-2006-0730 / ELSA-2006-0669)NessusOracle Linux Local Security Checks
high
37281CentOS 3 / 4 : php (CESA-2006:0730)NessusCentOS Local Security Checks
high
4444PHP 5.x < 5.2.0 Multiple VulnerabilitiesNessus Network MonitorWeb Servers
high
31649PHP 5.x < 5.2 Multiple VulnerabilitiesNessusCGI abuses
high
29376SuSE 10 Security Update : PHP (ZYPP Patch Number 2236)NessusSuSE Local Security Checks
high
27956Ubuntu 5.10 / 6.06 LTS / 6.10 : php5 vulnerability (USN-375-1)NessusUbuntu Local Security Checks
high
27148openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-2238)NessusSuSE Local Security Checks
high
24887GLSA-200703-21 : PHP: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
24581Mandrake Linux Security Advisory : php (MDKSA-2006:196)NessusMandriva Local Security Checks
high
23655Debian DSA-1206-1 : php4 - several vulnerabilitiesNessusDebian Local Security Checks
high
23653Slackware 10.2 / 11.0 : php (SSA:2006-307-01)NessusSlackware Local Security Checks
high
23631RHEL 2.1 / 3 / 4 : php (RHSA-2006:0730)NessusRed Hat Local Security Checks
high