GLSA-200402-01 : PHP setting leaks from .htaccess files on virtual hosts

medium Nessus Plugin ID 14445

Synopsis

The remote Gentoo host is missing one or more security-related patches.

Description

The remote host is affected by the vulnerability described in GLSA-200402-01 (PHP setting leaks from .htaccess files on virtual hosts)

If the server configuration 'php.ini' file has 'register_globals = on' and a request is made to one virtual host (which has 'php_admin_flag register_globals off') and the next request is sent to the another virtual host (which does not have the setting) through the same apache child, the setting will persist.
Impact :

Depending on the server and site, an attacker may be able to exploit global variables to gain access to reserved areas, such as MySQL passwords, or this vulnerability may simply cause a lack of functionality. As a result, users are urged to upgrade their PHP installations.
Gentoo ships PHP with 'register_globals' set to 'off' by default.
This issue affects both servers running Apache 1.x and servers running Apache 2.x.
Workaround :

No immediate workaround is available; a software upgrade is required.

Solution

All users are recommended to upgrade their PHP installation to 4.3.4-r4:
# emerge sync # emerge -pv '>=dev-php/mod_php-4.3.4-r4' # emerge '>=dev-php/mod_php-4.3.4-r4'

See Also

https://bugs.php.net/bug.php?id=25753

https://security.gentoo.org/glsa/200402-01

Plugin Details

Severity: Medium

ID: 14445

File Name: gentoo_GLSA-200402-01.nasl

Version: 1.13

Type: local

Published: 8/30/2004

Updated: 1/6/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:gentoo:linux:mod_php, cpe:/o:gentoo:linux

Required KB Items: Host/local_checks_enabled, Host/Gentoo/release, Host/Gentoo/qpkg-list

Patch Publication Date: 2/7/2004

Reference Information

GLSA: 200402-01