SUSE-SA:2006:067: php4,php5

Medium Nessus Plugin ID 24444

Synopsis

The remote host is missing a vendor-supplied security patch

Description

The remote host is missing the patch for the advisory SUSE-SA:2006:067 (php4,php5).


This update fixes the following security problems in the PHP scripting language:

- CVE-2006-5465: Various buffer overflows in htmlentities / htmlspecialchars internal routines could be used to crash the PHP interpreter or potentially execute code, depending on the PHP application used.

Solution

http://www.novell.com/linux/security/advisories/2006_67_php.html

Plugin Details

Severity: Medium

ID: 24444

File Name: suse_SA_2006_067.nasl

Version: $Revision: 1.5 $

Agent: unix

Published: 2007/02/18

Dependencies: 12634

Risk Information

Risk Factor: Medium

Vulnerability Information

Required KB Items: Host/SuSE/rpm-list