Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0599

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-0599
Last Modified 30 Oct 2012 10:51:51
Published 05 May 2008 01:20:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0599

Summary

The init_request_info function in sapi/cgi/cgi_main.c in PHP before 5.2.6 does not properly consider operator precedence when calculating the length of PATH_TRANSLATED, which might allow remote attackers to execute arbitrary code via a crafted URI.

Vulnerable Systems

Application

  • Php 5.0.0

  • Php 5.0.1

  • Php 5.0.2

  • Php 5.0.3

  • Php 5.0.4

  • Php 5.0.5

  • Php 5.1.0

  • Php 5.1.1

  • Php 5.1.2

  • Php 5.1.3

  • Php 5.1.4

  • Php 5.1.5

  • Php 5.1.6

  • Php 5.2.0

  • Php 5.2.1

  • Php 5.2.2

  • Php 5.2.3

  • Php 5.2.4

  • Php 5.2.5


References

CERT-VN - VU#147027

FEDORA - FEDORA-2008-3606

FEDORA - FEDORA-2008-3864

CONFIRM - https://issues.rpath.com/browse/RPL-2503

XF - php-vector-unspecified(42137)

VUPEN - ADV-2008-2268

VUPEN - ADV-2008-1810

VUPEN - ADV-2008-1412

UBUNTU - USN-628-1

SECTRACK - 1019958

BID - 29009

BUGTRAQ - 20080523 rPSA-2008-0176-1 php php-cgi php-imap php-mcrypt php-mysql php-mysqli php-pgsql php-soap php-xsl php5 php5-cgi php5-imap php5-mcrypt php5-mysql php5-mysqli php5-pear php5-pgsql php5-soap php5-xsl

REDHAT - RHSA-2008:0505

CONFIRM - http://www.php.net/ChangeLog-5.php

MLIST - [oss-security] 20080502 CVE Request (PHP)

MANDRIVA - MDVSA-2008:128

MANDRIVA - MDVSA-2008:127

CONFIRM - http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0176

SECUNIA - 35650

SECUNIA - 31326

SECUNIA - 31200

SECUNIA - 30828

SECUNIA - 30757

SECUNIA - 30616

SECUNIA - 30345

SECUNIA - 30083

SECUNIA - 30048

SLACKWARE - SSA:2008-128-01

HP - HPSBUX02465

HP - HPSBUX02431

APPLE - APPLE-SA-2008-07-31

HP - SSRT080063

CONFIRM - http://cvs.php.net/viewvc.cgi/php-src/sapi/cgi/cgi_main.c?r1=1.267.2.15.2.50.2.12&r2=1.267.2.15.2.50.2.13&diff_format=u

GENTOO - GLSA-200811-05

SECUNIA - 32746

HP - SSRT090192

HP - SSRT090085

HP - HPSBUX02342

Related Patches

Apple 2008-07-31 Security Update 2008-005 (PPC)

Apple 2008-07-31 Security Update 2008-005 Server (PPC)

Apple 2008-07-31 Security Update 2008-005 (Leopard)

Apple 2008-07-31 Security Update 2008-005 (Intel)

Apple 2008-07-31 Security Update 2008-005 Server (Intel)


Last Updated: 27 May 2016 10:47:18