Details
Stefan Esser discovered that the ‘session’ module did not sufficiently
verify the validity of the user-supplied session ID. A remote attacker
could exploit this to insert arbitrary HTTP headers into the response
sent by the PHP application, which could lead to HTTP Response
Splitting (forging of arbitrary responses on behalf the PHP
application) and Cross Site Scripting (XSS) (execution of arbitrary
web script code in the client’s browser) attacks. (CVE-2006-0207)
PHP applications were also vulnerable to several Cross Site Scripting
(XSS) flaws if the options ‘display_errors’ and ‘html_errors’ were
enabled. Please note that enabling ‘html_errors’ is not recommended
for production systems. (CVE-2006-0208)
Stefan Esser discovered that the ‘session’ module did not sufficiently
verify the validity of the user-supplied session ID. A remote attacker
could exploit this to insert arbitrary HTTP headers into the response
sent by the PHP application, which could lead to HTTP Response
Splitting (forging of arbitrary responses on behalf the PHP
application) and Cross Site Scripting (XSS) (execution of arbitrary
web script code in the client’s browser) attacks. (CVE-2006-0207)
PHP applications were also vulnerable to several Cross Site Scripting
(XSS) flaws if the options ‘display_errors’ and ‘html_errors’ were
enabled. Please note that enabling ‘html_errors’ is not recommended
for production systems. (CVE-2006-0208)
Update instructions
In general, a standard system update will make all the necessary changes.
Learn more about how to get the fixes.The problem can be corrected by updating your system to the following package versions:
Ubuntu Release | Package Version | ||
---|---|---|---|
5.10 breezy | libapache2-mod-php4 – | ||
libapache2-mod-php5 – | |||
5.04 hoary | libapache2-mod-php4 – | ||
libapache2-mod-php5 – | |||
4.10 warty | libapache2-mod-php4 – | ||
libapache2-mod-php5 – |
Reduce your security exposure
Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.