Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > November 2005 > PHP 5.1.1 released fixing multiple vulnerabilities

November 2005

PHP 5.1.1 released fixing multiple vulnerabilities

ID: 01051
Ref: 986/2005
Date: 29 November 2005:10:25:22
Version: 1
Title: PHP 5.1.1 released fixing multiple vulnerabilities
Abstract:
Vendors affected: PHP
Operating systems affected: PHP
Applications affected: PHP
Title
=====

PHP 5.1.1 released fixing multiple vulnerabilities

Detail
======

PHP 5.1.0 and prior contain multiple vulnerabilities which may allow
arbitrary code execution or denial of service attacks. The PHP
Development Team have released an advisory [1] regarding these
vulnerabilities. For full details of all changes in PHP 5.1.1, please
refer to the PHP change log [2].


- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

===========================================================================

PHP 5.1.1 released fixing multiple vulnerabilities
28 November 2005
- - ---------------------------------------------------------------------------



Product: PHP 5.1.0 and prior
Operating System: Linux variants
UNIX variants
Windows
Mac OS X
Impact: Execute Arbitrary Code/Commands
Denial of Service
Cross-site Scripting
Inappropriate Access
Access: Remote/Unauthenticated

Ref: CAN-2005-2491

Original Bulletin: http://news.php.net/php.announce/58

OVERVIEW:

PHP 5.1.0 and prior contain multiple vulnerabilities which may allow
arbitrary code execution or denial of service attacks. The PHP
Development Team have released an advisory [1] regarding these
vulnerabilities. For full details of all changes in PHP 5.1.1, please
refer to the PHP change log [2].


IMPACT:

1. Execute Arbitrary Code

Integer overflows in pcre_compile.c allows attackers to overflow heap
buffers via quantifier values in regular expressions, potentially
leading to the execution of arbitrary code.


2. Denial of Service

Multiple vulnerabilities exist which allow memory corruption
potentially leading to a denial of service condition. For more
information, see the PHP change log [2].


3. Cross-site scripting

A Cross-site scripting vulnerability exists in the phpinfo() function
which may lead to information disclosure.


4. Inappropriate Access

Multiple vulnerable functions exist which allow modification of
configuration directives or variables. For full details, please refer
to the PHP change log [2].


MITIGATION:

It is recommended that users of earlier versions of PHP, including
those running beta versions of PHP 5.1.0, upgrade to version 5.1.1.


REFERENCES:

[1] http://news.php.net/php.announce/58
[2] http://www.php.net/ChangeLog-5.php#5.1.1


===========================================================================
iQCVAwUBQ4uY0ih9+71yA2DNAQLMOAP9G0nV5S3MHW/kpDey+6MdeNgj+IegGBWS
Gjp0lp1RVRVx2NoIIJSVENEd1I67rYpSMzftW3K26JMAKrwcAebJhMI51Dj4JV/b
ZUpGfqpytawrEOxf2TDb8UoTx+H2t3bHsHFxW6nSSqRPw9cROUou91KvzoEWqY5X
0001eeCLdDU=
=tHd0
- -----END PGP SIGNATURE-----
  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |