Title: PHP Html_Entity_Decode() Information Disclosure Vulnerability
Severity: MODERATE
Description:
The 'html_entity_decode()' function converts HTML entities to their applicable characters. It supports various charsets.
PHP 'html_entity_decode()' function is prone to an information-disclosure vulnerability. This issue likely results from insufficient sanitization of user-supplied data.
Reports indicate that the affected function does not handle user data in a secure manner; an attacker can supply specially crafted data to a script employing this function to obtain sensitive information by accessing arbitrary portions of memory. This issue arises when a script using the function accepts data from a remote untrusted source and returns the function's result to an attacker.
Information that the attacker gathers by exploiting this vulnerability may aid in other attacks.
Presumably, in some circumstances, an attacker may be able to obtain user authentication credentials.
PHP versions prior to 5.1.3-RC1 are vulnerable to this issue.
Affected Products:
- Apple Mac OS X 10.3.9
- Apple Mac OS X 10.4.8
- Apple Mac OS X Server 10.3.9
- Apple Mac OS X Server 10.4.8
- Avaya CVLAN
- Avaya Converged Communications Server 2.0.0
- Avaya Integrated Management
- Avaya Interactive Response
- Avaya Intuity LX
- Avaya Message Networking
- Avaya Messaging Storage Server
- Avaya Messaging Storage Server MM3.0
- Avaya S8300 R2.0.0
- Avaya S8300 R2.0.1
- Avaya S8500 R2.0.0
- Avaya S8500 R2.0.1
- Avaya S8700 R2.0.0
- Avaya S8700 R2.0.1
- Avaya S8710 R2.0.0
- Avaya S8710 R2.0.1
- Gentoo Linux
- Linux kernel 2.4.19
- Linux kernel 2.4.21
- Linux kernel 2.6.5
- MandrakeSoft Corporate Server 3.0.0
- MandrakeSoft Corporate Server 3.0.0 x86_64
- MandrakeSoft Linux Mandrake 10.0.0
- MandrakeSoft Linux Mandrake 10.0.0 amd64
- MandrakeSoft Linux Mandrake 10.1.0
- MandrakeSoft Linux Mandrake 10.1.0 x86_64
- MandrakeSoft Linux Mandrake 9.1.0
- MandrakeSoft Linux Mandrake 9.1.0 ppc
- OpenPKG OpenPKG Current
- PHP PHP 4.3.0
- PHP PHP 4.3.1
- PHP PHP 4.3.10
- PHP PHP 4.3.11
- PHP PHP 4.3.2
- PHP PHP 4.3.3
- PHP PHP 4.3.4
- PHP PHP 4.3.5
- PHP PHP 4.3.6
- PHP PHP 4.3.7
- PHP PHP 4.3.8
- PHP PHP 4.3.9
- PHP PHP 4.4.0 .0
- PHP PHP 4.4.1
- PHP PHP 4.4.2
- PHP PHP 5.0.0 .0
- PHP PHP 5.0.0 candidate 1
- PHP PHP 5.0.0 candidate 2
- PHP PHP 5.0.0 candidate 3
- PHP PHP 5.0.1
- PHP PHP 5.0.2
- PHP PHP 5.0.3
- PHP PHP 5.0.4
- PHP PHP 5.0.5
- PHP PHP 5.1.0
- PHP PHP 5.1.1
- PHP PHP 5.1.2
- RedHat Desktop 3.0.0
- RedHat Desktop 4.0.0
- RedHat Enterprise Linux AS 3
- RedHat Enterprise Linux AS 4
- RedHat Enterprise Linux ES 3
- RedHat Enterprise Linux ES 4
- RedHat Enterprise Linux WS 3
- RedHat Enterprise Linux WS 4
- RedHat Fedora Core1
- RedHat Fedora Core2
- RedHat Fedora Core3
- RedHat Linux 7.3.0 i386
- RedHat Linux 9.0.0 i386
- S.u.S.E. Linux Enterprise Server 8
- S.u.S.E. Linux Enterprise Server 9
- S.u.S.E. Linux Enterprise Server for S/390
- S.u.S.E. Linux Enterprise Server for S/390 9.0.0
- S.u.S.E. Linux Personal 10.0.0 OSS
- S.u.S.E. Linux Personal 8.2.0
- S.u.S.E. Linux Personal 9.0.0
- S.u.S.E. Linux Personal 9.0.0 x86_64
- S.u.S.E. Linux Personal 9.1.0
- S.u.S.E. Linux Personal 9.1.0 x86_64
- S.u.S.E. Linux Personal 9.2.0
- S.u.S.E. Linux Personal 9.2.0 x86_64
- S.u.S.E. Linux Personal 9.3.0
- S.u.S.E. Linux Personal 9.3.0 x86_64
- S.u.S.E. Linux Professional 10.0.0
- S.u.S.E. Linux Professional 10.0.0 OSS
- S.u.S.E. Linux Professional 9.1.0
- S.u.S.E. Linux Professional 9.1.0 x86_64
- S.u.S.E. Linux Professional 9.2.0
- S.u.S.E. Linux Professional 9.2.0 x86_64
- S.u.S.E. Linux Professional 9.3.0
- S.u.S.E. Linux Professional 9.3.0 x86_64
- S.u.S.E. UnitedLinux 1.0.0
- SGI ProPack 3.0.0 SP6
- Trustix Secure Enterprise Linux 2.0.0
- Trustix Secure Linux 1.5.0
- Trustix Secure Linux 2.0.0
- Trustix Secure Linux 2.1.0
- Trustix Secure Linux 2.2.0
- Trustix Secure Linux 3.0.0
- Turbolinux Home
- Turbolinux Turbolinux 10 F...
- Turbolinux Turbolinux Desktop 10.0.0
- Turbolinux Turbolinux Server 10.0.0
- Ubuntu Ubuntu Linux 4.1.0 ia32
- Ubuntu Ubuntu Linux 4.1.0 ia64
- Ubuntu Ubuntu Linux 4.1.0 ppc
- Ubuntu Ubuntu Linux 5.0.0 4 amd64
- Ubuntu Ubuntu Linux 5.0.0 4 i386
- Ubuntu Ubuntu Linux 5.0.0 4 powerpc
- Ubuntu Ubuntu Linux 5.10.0 amd64
- Ubuntu Ubuntu Linux 5.10.0 i386
- Ubuntu Ubuntu Linux 5.10.0 powerpc
- Ubuntu Ubuntu Linux 5.10.0 sparc
- Ubuntu Ubuntu Linux 6.06 LTS amd64
- Ubuntu Ubuntu Linux 6.06 LTS i386
- Ubuntu Ubuntu Linux 6.06 LTS powerpc
- Ubuntu Ubuntu Linux 6.06 LTS sparc
- phpMyFAQ phpMyFAQ 1.3.12
- phpMyFAQ phpMyFAQ 1.3.13
- phpMyFAQ phpMyFAQ 1.4.0
- phpMyFAQ phpMyFAQ 1.4.0 -alpha 1
- phpMyFAQ phpMyFAQ 1.4.0 -alpha 2
- phpMyFAQ phpMyFAQ 1.4.0 a
- phpMyFAQ phpMyFAQ 1.4.1
- phpMyFAQ phpMyFAQ 1.4.2
- phpMyFAQ phpMyFAQ 1.4.3
- phpMyFAQ phpMyFAQ 1.4.4
- phpMyFAQ phpMyFAQ 1.4.5
- phpMyFAQ phpMyFAQ 1.4.6
- phpMyFAQ phpMyFAQ 1.4.7
- phpMyFAQ phpMyFAQ 1.4.8
- phpMyFAQ phpMyFAQ 1.4.9
- phpMyFAQ phpMyFAQ 1.5.0
- phpMyFAQ phpMyFAQ 1.5.0 Beta3
- phpMyFAQ phpMyFAQ 1.5.0 RC1
- phpMyFAQ phpMyFAQ 1.5.0 RC2
- phpMyFAQ phpMyFAQ 1.5.0 RC3
- phpMyFAQ phpMyFAQ 1.5.0 RC4
- phpMyFAQ phpMyFAQ 1.5.0 RC5
- phpMyFAQ phpMyFAQ 1.5.0 alpha1
- phpMyFAQ phpMyFAQ 1.5.0 alpha2
- phpMyFAQ phpMyFAQ 1.5.0 beta1
- phpMyFAQ phpMyFAQ 1.5.0 beta2
- phpMyFAQ phpMyFAQ 1.5.1
- phpMyFAQ phpMyFAQ 1.5.3
- phpMyFAQ phpMyFAQ 1.5.4
References:
- Ilia Alshanetsky: cvs: php-src(PHP_5_2) /ext/standard html.c
- PHP Group: PHP Homepage
- Red Hat: RHSA-2006:0276-9 - php security update
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
