CVE-2008-2051 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2008-2051
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-2051

Description: The escapeshellcmd API function in PHP before 5.2.6 has unknown impact and context-dependent attack vectors related to "incomplete multibyte chars."

CVE Status: Candidate

References: UBUNTU http://www.ubuntu.com/usn/usn-628-1 SUSE http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html SAID Secunia Advisory: SA30048 Secunia Advisory: SA30288 Secunia Advisory: SA30345 Secunia Advisory: SA30411 Secunia Advisory: SA30757 Secunia Advisory: SA30828 Secunia Advisory: SA30967 Secunia Advisory: SA31119 Secunia Advisory: SA31124 Secunia Advisory: SA31200 Secunia Advisory: SA31326 REDHAT http://www.redhat.com/support/errata/RHSA-2008-0582.html http://www.redhat.com/support/errata/RHSA-2008-0505.html http://www.redhat.com/support/errata/RHSA-2008-0544.html http://www.redhat.com/support/errata/RHSA-2008-0545.html http://www.redhat.com/support/errata/RHSA-2008-0546.html MLIST http://www.openwall.com/lists/oss-security/2008/05/02/2 MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:126 http://www.mandriva.com/security/advisories?name=MDVSA-2008:127 http://www.mandriva.com/security/advisories?name=MDVSA-2008:128 http://www.mandriva.com/security/advisories?name=MDVSA-2008:125 FEDORA DEBIAN http://www.debian.org/security/2008/dsa-1578 CONFIRM http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0178 http://www.php.net/ChangeLog-5.php http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0176 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/492671/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/492535/100/0/threaded BID 29009 APPLE http://lists.apple.com/archives/security-announce//2008/Jul/msg00003.html

Return to the previous page.