CVE-2006-1991 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2006-1991
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-1991

Description: The substr_compare function in string.c in PHP 5.1.2 allows context-dependent attackers to cause a denial of service (memory access violation) via an out-of-bounds offset argument.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/26003 UBUNTU http://www.ubuntu.com/usn/usn-320-1 SUSE http://www.novell.com/linux/security/advisories/2006_31_php.html ST 1015979 SAID Secunia Advisory: SA21125 Secunia Advisory: SA20676 Secunia Advisory: SA20269 Secunia Advisory: SA20052 MISC http://www.infigo.hr/en/in_focus/advisories/INFIGO-2006-04-02 MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:091 MANDRAKE http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:091 GENTOO http://security.gentoo.org/glsa/glsa-200605-08.xml

Return to the previous page.