[Phpwm] Fw: [USN-261-1] PHP vulnerabilities

sparkes sparkes at westmids.biz
Fri Mar 10 16:39:46 GMT 2006

Time to update your systems again.  Yet another exploitable problem


Begin forwarded message:

Details follow:

Stefan Esser discovered that the 'session' module did not sufficiently
verify the validity of the user-supplied session ID. A remote attacker
could exploit this to insert arbitrary HTTP headers into the response
sent by the PHP application, which could lead to HTTP Response
Splitting (forging of arbitrary responses on behalf the PHP
application) and Cross Site Scripting (XSS) (execution of arbitrary
web script code in the client's browser) attacks. (CVE-2006-0207)

PHP applications were also vulnerable to several Cross Site Scripting
(XSS) flaws if the options 'display_errors' and 'html_errors' were
enabled. Please note that enabling 'html_errors' is not recommended
for production systems. (CVE-2006-0208)

| |O| | Stephen Parkes aka sparkes blog http://sp.arkes.co.uk 
| | |O| Geek Gear http://nerd.ws, Free Software http://zx-81.com
|O|O|O| Autistic GNU/Linux/*nix User Group http://autisticlug.org
motd: I like feminists, well cute blonde ones anyway

-------------- next part --------------
ubuntu-security-announce mailing list
ubuntu-security-announce at lists.ubuntu.com

More information about the Phpwm mailing list