Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0595

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2004-0595
Last Modified 07 Mar 2011 09:16:03
Published 27 Jul 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2004-0595

Summary

The strip_tags function in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, does not filter null (\0) characters within tag names when restricting input to allowed tags, which allows dangerous tags to be processed by web browsers such as Internet Explorer and Safari, which ignore null characters and facilitate the exploitation of cross-site scripting (XSS) vulnerabilities.

Vulnerable Systems

Operating System

  • Redhat Fedora Core Core 1.0

  • Redhat Fedora Core Core 2.0

  • Trustix Secure Linux 1.5

  • Trustix Secure Linux 2.0

  • Trustix Secure Linux 2.1

Application

  • Avaya Integrated Management

  • Php 4.0

  • Php 4.0.1

  • Php 4.0.2

  • Php 4.0.3

  • Php 4.0.4

  • Php 4.0.5

  • Php 4.0.6

  • Php 4.0.7

  • Php 4.1.0

  • Php 4.1.1

  • Php 4.1.2

  • Php 4.2.0

  • Php 4.2.1

  • Php 4.2.2

  • Php 4.2.3

  • Php 4.3

  • Php 4.3.1

  • Php 4.3.2

  • Php 4.3.3

  • Php 4.3.5

  • Php 4.3.6

  • Php 4.3.7

  • Php 5.0


References

BID - 10724

DEBIAN - DSA-531

XF - php-strip-tag-bypass(16692)

REDHAT - RHSA-2004:405

REDHAT - RHSA-2004:395

REDHAT - RHSA-2004:392

SUSE - SUSE-SA:2004:021

MANDRAKE - MDKSA-2004:068

GENTOO - GLSA-200407-13

DEBIAN - DSA-669

BUGTRAQ - 20040713 Advisory 11/2004: PHP memory_limit remote vulnerability

FULLDISC - 20040714 Advisory 12/2004: PHP strip_tags() bypass vulnerability

REDHAT - RHSA-2005:816

HP - SSRT4777

BUGTRAQ - 20040722 [OpenPKG-SA-2004.034] OpenPKG Security Advisory (php)

BUGTRAQ - 20040714 TSSA-2004-013 - php

CONECTIVA - CLA-2004:847


Last Updated: 27 May 2016 10:38:40