Published: 27/07/2004 Updated: 30/10/2018

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

VMScore: 685

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Subscribe to Converged Communications Server

The strip_tags function in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, does not filter null (\0) characters within tag names when restricting input to allowed tags, which allows dangerous tags to be processed by web browsers such as Internet Explorer and Safari, which ignore null characters and facilitate the exploitation of cross-site scripting (XSS) vulnerabilities.

Vulnerable Product	Search on Vulmon	Subscribe to Product
avaya converged communications server 2.0
redhat fedora core core_1.0
redhat fedora core core_2.0
trustix secure linux 1.5
trustix secure linux 2.0
trustix secure linux 2.1
php php 4.0
php php 4.0.1
php php 4.1.0
php php 4.1.1
php php 4.1.2
php php 4.3.2
php php 4.3.3
avaya s8300 r2.0.0
avaya s8300 r2.0.1
php php 4.0.2
php php 4.0.3
php php 4.2.0
php php 4.2.1
php php 4.3.5
php php 4.3.6
avaya s8500 r2.0.0
avaya s8500 r2.0.1
php php 4.0.4
php php 4.0.5
php php 4.2.2
php php 4.2.3
php php 4.3.7
php php 5.0
avaya s8700 r2.0.0
avaya s8700 r2.0.1
avaya integrated management
php php 4.0.6
php php 4.0.7
php php 4.3.0
php php 4.3.1

Synopsis php security update Type/Severity Security Advisory: Important Topic Updated php packages that fix various security issues are now available Description PHP is an HTML-embedded scripting language commonly used with the ApacheHTTP serverStefan Esser discovered a flaw when memory_l ...

Two vulnerabilities have been discovered in php4 which also apply to the version of php3 in the stable Debian distribution The Common Vulnerabilities and Exposures project identifies the following problems: CAN-2004-0594 The memory_limit functionality allows remote attackers to execute arbitrary code under certain circumstances CAN-2004- ...

Two vulnerabilities were discovered in php4: CAN-2004-0594 The memory_limit functionality in PHP 4x up to 437, and 5x up to 500RC3, under certain conditions such as when register_globals is enabled, allows remote attackers to execute arbitrary code by triggering a memory_limit abort during execution of the zend_hash_init funct ...

source: wwwsecurityfocuscom/bid/10724/info It is reported that it is possible to bypass PHPs strip_tags() function It is reported that under certain circumstances, PHPs strip_tags() function will improperly leave malformed tags in place This vulnerability may mean that previously presumed-safe web applications could contain multiple c ...

NVD-CWE-Other http://www.securityfocus.com/bid/10724 http://www.debian.org/security/2004/dsa-531 http://lists.grok.org.uk/pipermail/full-disclosure/2004-July/023909.html http://www.debian.org/security/2005/dsa-669 http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:068 http://www.redhat.com/support/errata/RHSA-2004-392.html http://www.redhat.com/support/errata/RHSA-2004-395.html http://www.redhat.com/support/errata/RHSA-2004-405.html http://www.novell.com/linux/security/advisories/2004_21_php4.html http://www.gentoo.org/security/en/glsa/glsa-200407-13.xml http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000847 http://www.redhat.com/support/errata/RHSA-2005-816.html http://marc.info/?l=bugtraq&m=109051444105182&w=2 http://marc.info/?l=bugtraq&m=108981780109154&w=2 http://marc.info/?l=bugtraq&m=109181600614477&w=2 http://marc.info/?l=bugtraq&m=108982983426031&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/16692 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10619 https://access.redhat.com/errata/RHSA-2004:392 https://nvd.nist.gov https://www.exploit-db.com/exploits/24280/https://www.debian.org/security/./dsa-669

CVE-2004-0595

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect