CVE-2007-5898 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2007-5898
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-5898

Description: The (1) htmlentities and (2) htmlspecialchars functions in PHP before 5.2.5 accept partial multibyte sequences, which has unknown impact and attack vectors, a different issue than CVE-2006-5465.

CVE Status: Candidate

References: UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-549-1 http://www.ubuntu.com/usn/usn-549-2 http://www.ubuntu.com/usn/usn-628-1 SUSE http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00006.html ST 1018934 SAID Secunia Advisory: SA27648 Secunia Advisory: SA27659 Secunia Advisory: SA27864 Secunia Advisory: SA28249 Secunia Advisory: SA28658 Secunia Advisory: SA30040 Secunia Advisory: SA30828 Secunia Advisory: SA31119 Secunia Advisory: SA31124 Secunia Advisory: SA31200 REDHAT http://www.redhat.com/support/errata/RHSA-2008-0505.html http://www.redhat.com/support/errata/RHSA-2008-0544.html http://www.redhat.com/support/errata/RHSA-2008-0582.html http://www.redhat.com/support/errata/RHSA-2008-0546.html http://www.redhat.com/support/errata/RHSA-2008-0545.html MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:127 http://www.mandriva.com/security/advisories?name=MDVSA-2008:125 http://www.mandriva.com/security/advisories?name=MDVSA-2008:126 HP http://www.securityfocus.com/archive/1/archive/1/491693/100/0/threaded FEDORA DEBIAN http://www.debian.org/security/2008/dsa-1444 CONFIRM http://www.php.net/releases/5_2_5.php http://www.php.net/ChangeLog-5.php#5.2.5

Return to the previous page.