1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
|
PublicDate: 2004-11-03
Candidate: CVE-2004-0958
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0958
Description:
php_variables.c in PHP before 5.0.2 allows remote attackers to read
sensitive memory contents via (1) GET, (2) POST, or (3) COOKIE GPC
variables that end in an open bracket character, which causes PHP to
calculate an incorrect string length.
Ubuntu-Description:
Notes:
Bugs:
dapper_php4: released (4.4.2-1build1)
edgy_php4: released (4.4.2-1build1)
feisty_php4: DNE
devel_php4: DNE
dapper_php5: released (5.1.2-1ubuntu3.9)
edgy_php5: released (5.1.6-1ubuntu2.6)
feisty_php5: released (5.2.1-0ubuntu1.4)
devel_php5: released (5.2.3-1ubuntu5)
upstream_php4:
upstream_php5:
|