CVE-2006-4482 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-4482
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-4482

Description: Multiple heap-based buffer overflows in the (1) str_repeat and (2) wordwrap functions in ext/standard/string.c in PHP before 5.1.5, when used on a 64-bit system, have unspecified impact and attack vectors, a different vulnerability than CVE-2006-1990.

CVE Status: Candidate

References: UBUNTU http://www.ubuntu.com/usn/usn-342-1 TURBO http://www.turbolinux.com/security/2006/TLSA-2006-38.txt SUSE http://www.novell.com/linux/security/advisories/2006_52_php.html ST 1016984 SGI SAID Secunia Advisory: SA22225 Secunia Advisory: SA22069 Secunia Advisory: SA22004 Secunia Advisory: SA21768 Secunia Advisory: SA21546 Secunia Advisory: SA22440 Secunia Advisory: SA22538 Secunia Advisory: SA22487 Secunia Advisory: SA22713 Secunia Advisory: SA22039 REDHAT http://www.redhat.com/support/errata/RHSA-2006-0682.html http://rhn.redhat.com/errata/RHSA-2006-0688.html http://www.redhat.com/support/errata/RHSA-2006-0669.html MISC http://cvs.php.net/viewvc.cgi/php-src/ext/standard/string.c?r1=1.445.2.14.2.10&r2=1.445.2.14.2.11 DEBIAN http://www.debian.org/security/2006/dsa-1206 CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2006-222.htm http://support.avaya.com/elmodocs2/security/ASA-2006-223.htm http://www.php.net/release_5_1_5.php http://support.avaya.com/elmodocs2/security/ASA-2006-221.htm http://www.php.net/ChangeLog-5.php#5.1.5 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/447866/100/0/threaded BID 19582

Return to the previous page.