SecurityLex.Org
Home
My IP
SecCon
Glossary
Vulnerability Tests
Sans/FBI Top 20
Top 10
Ipfilter
Recent Vulnerabilities
Today's news
Web Host Check
VulnTests
SecureScout Testcase
eEye Retina RTH
Nessus Plugin ID
nCircle Sans CVE's
Dragonsoft Vuln ID
CVE Entries
Search CVSS vectors
CVSS Base score between
and
Access Vector
Any
Remote
Local
Confidentiality Impact
Any
Complete
Partial
None
Access Complexity
Any
High
Low
Integrity Impact
Any
Complete
Partial
None
Authentification
Any
Required
Not-required
Availability Impact
Any
Complete
Partial
None
Impact Bias
Any
Normal
Availability
Integrity
Confidentiality
Your search for "CVE-2006-5465" returned:
CVE Entries:
CVE-2006-5465
Name:
CVE-2006-5465
CVE References:
cve.mitre.org
,
nvd.nist.gov
SANS/FBI TOP20 Reference:
Risk:
High
CVSS Base Score:
7.5 (ver.2.0 upgrade from v1.0)
Access Vector:
Network
Access Complexity:
Low
Authentication:
Not required
Confidentiality Impact:
Partial
Integrity Impact:
Partial
Availability Impact:
Partial
Impact Bias:
N/A
Security vendors coverage:
SecureScout Testcase:
17481
Nessus Plugin ID:
31649
23655
23655
23655
23655
24717
23631
23653
25302
24043
24042
24581
24887
25101
27148
27956
29376
37281
Dragonsoft Vuln ID:
2829
Description:
Buffer overflow in PHP before 5.2.0 allows remote attackers to execute arbitrary code via crafted UTF-8 inputs to the (1) htmlentities or (2) htmlspecialchars functions.
Vulnerability Type:
Input validation error: buffer overflow
Vulnerable Versions:
Product:
php
Vendor:
php
Versions:
5.0 Edition: rc1
5.0 Edition: rc2
5.0 Edition: rc3
5.0.0
5.0.1
5.0.2
5.0.3
5.0.4
5.0.5
5.1
5.1.1
5.1.2
5.1.3
5.1.4
5.1.5
5.1.6 Previous versions are also affected.
References:
CERT:
http://www.us-cert.gov/cas/techalerts/TA06-333A.html
XF:
http://xforce.iss.net/xforce/xfdb/29971
UBUNTU:
http://www.ubuntu.com/usn/usn-375-1
BID:
http://www.securityfocus.com/bid/20879
REDHAT:
http://www.redhat.com/support/errata/RHSA-2006-0730.html
CONFIRM:
http://www.php.net/releases/5_2_0.php
MANDRIVA:
http://www.mandriva.com/security/advisories?name=MDKSA-2006:196
MISC:
http://www.hardened-php.net/advisory_132006.138.html
VUPEN:
http://www.frsirt.com/english/advisories/2006/4317
DEBIAN:
http://www.debian.org/security/2006/dsa-1206
SECTRACK:
http://securitytracker.com/id?1017152
SECUNIA:
http://secunia.com/advisories/22753
SECUNIA:
http://secunia.com/advisories/22713
SECUNIA:
http://secunia.com/advisories/22693
SECUNIA:
http://secunia.com/advisories/22688
SECUNIA:
http://secunia.com/advisories/22653
OVAL:
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10240
MANDRIVA:
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:196
TURBO:
http://www.turbolinux.com/security/2006/TLSA-2006-38.txt
TRUSTIX:
http://www.trustix.org/errata/2006/0061/
BUGTRAQ:
http://www.securityfocus.com/archive/1/archive/1/453024/100/0/threaded
BUGTRAQ:
http://www.securityfocus.com/archive/1/archive/1/451098/100/0/threaded
BUGTRAQ:
http://www.securityfocus.com/archive/1/archive/1/450431/100/0/threaded
REDHAT:
http://www.redhat.com/support/errata/RHSA-2006-0731.html
OPENPKG:
http://www.openpkg.com/security/advisories/OpenPKG-SA-2006.028.html
SUSE:
http://www.novell.com/linux/security/advisories/2006_67_php.html
VUPEN:
http://www.frsirt.com/english/advisories/2007/1546
VUPEN:
http://www.frsirt.com/english/advisories/2006/4750
VUPEN:
http://www.frsirt.com/english/advisories/2006/4749
CISCO:
http://www.cisco.com/warp/public/707/cisco-air-20070425-http.shtml
CISCO:
http://www.cisco.com/en/US/products/products_security_response09186a008082c4fe.html
CONFIRM:
http://support.avaya.com/elmodocs2/security/ASA-2006-245.htm
SECTRACK:
http://securitytracker.com/id?1017296
GENTOO:
http://security.gentoo.org/glsa/glsa-200703-21.xml
SECUNIA:
http://secunia.com/advisories/25047
SECUNIA:
http://secunia.com/advisories/24606
SECUNIA:
http://secunia.com/advisories/23247
SECUNIA:
http://secunia.com/advisories/23155
SECUNIA:
http://secunia.com/advisories/23139
SECUNIA:
http://secunia.com/advisories/22929
SECUNIA:
http://secunia.com/advisories/22881
SECUNIA:
http://secunia.com/advisories/22779
SECUNIA:
http://secunia.com/advisories/22759
SECUNIA:
http://secunia.com/advisories/22685
REDHAT:
http://rhn.redhat.com/errata/RHSA-2006-0736.html
APPLE:
http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html
CONFIRM:
http://issues.rpath.com/browse/RPL-761
CONFIRM:
http://docs.info.apple.com/article.html?artnum=304829
SGI:
ftp://patches.sgi.com/support/free/security/advisories/20061101-01-P
Created:
2006-11-03 00:00:00
Last Changed:
2010-08-21 00:00:00
The Complete Lexicon to Security