exploits , vulnerabilities , articles , PHP Strip_Tags() Function Bypass Vulnerability
| Title |
PHP Strip_Tags() Function Bypass Vulnerability |
| Published |
2004-07-14-12:00AM |
| Updated |
2005-11-02-05:07PM |
| Class |
Input Validation Error |
| CVE |
CAN-2004-0595 |
| Remote |
Yes |
| Local |
No |
| Credit |
Stefan Esser <s.esser@ematters.de> disclosed this vulnerability. |
| Vulnerable |
Trustix Secure Linux 2.1
Trustix Secure Linux 2.0
Trustix Secure Linux 1.5
Trustix Secure Enterprise Linux 2.0
Slackware Linux 10.1
Slackware Linux 10.0
Slackware Linux 9.1
Slackware Linux 9.0
Slackware Linux 8.1
Slackware Linux current
RedHat Stronghold 4.0
RedHat Fedora Core2
RedHat Fedora Core1
RedHat Enterprise Linux WS 3
RedHat Enterprise Linux ES 3
RedHat Enterprise Linux AS 3
RedHat Desktop 3.0
PHP PHP 5.0 candidate 3
PHP PHP 5.0 candidate 2
PHP PHP 5.0 candidate 1
PHP PHP 4.3.7
PHP PHP 4.3.6
PHP PHP 4.3.5
PHP PHP 4.3.3
S.u.S.E. Linux Personal 9.0
S.u.S.E. Linux Personal 9.0 x86_64
Turbolinux Home
Turbolinux Turbolinux 10 F...
Turbolinux Turbolinux Desktop 10.0
PHP PHP 4.3.2
PHP PHP 4.3.1
MandrakeSoft Linux Mandrake 9.1
MandrakeSoft Linux Mandrake 9.1 ppc
OpenPKG OpenPKG Current
S.u.S.E. Linux Personal 8.2
PHP PHP 4.3
PHP PHP 4.2.3
EnGarde Secure Linux 1.0.1
MandrakeSoft Corporate Server 2.1
MandrakeSoft Corporate Server 2.1 x86_64
MandrakeSoft Linux Mandrake 9.0
Turbolinux Turbolinux Server 7.0
Turbolinux Turbolinux Server 8.0
Turbolinux Turbolinux Workstation 7.0
Turbolinux Turbolinux Workstation 8.0
PHP PHP 4.2.2
Gentoo Linux 1.2
Gentoo Linux 1.4 _rc1
OpenPKG OpenPKG 1.1
RedHat Linux 8.0
RedHat Linux 8.0 i386
S.u.S.E. Linux 8.1
PHP PHP 4.2.1
FreeBSD FreeBSD 4.3
FreeBSD FreeBSD 4.4
FreeBSD FreeBSD 4.5
FreeBSD FreeBSD 4.6
Slackware Linux 8.1
PHP PHP 4.2 .0
PHP PHP 4.1.2
Apple Mac OS X 10.0
Apple Mac OS X 10.0.1
Apple Mac OS X 10.0.2
Apple Mac OS X 10.0.3
Apple Mac OS X 10.0.4
Apple Mac OS X 10.1
Apple Mac OS X 10.1
Apple Mac OS X 10.1.1
Apple Mac OS X 10.1.2
Apple Mac OS X 10.1.3
Apple Mac OS X 10.1.4
Apple Mac OS X 10.1.5
Debian Linux 3.0 alpha
Debian Linux 3.0 arm
Debian Linux 3.0 hppa
Debian Linux 3.0 ia32
Debian Linux 3.0 ia64
Debian Linux 3.0 m68k
Debian Linux 3.0 mips
Debian Linux 3.0 mipsel
Debian Linux 3.0 ppc
Debian Linux 3.0 s/390
Debian Linux 3.0 sparc
MandrakeSoft Linux Mandrake 8.2
MandrakeSoft Linux Mandrake 8.2 ppc
MandrakeSoft Multi Network Firewall 2.0
MandrakeSoft Single Network Firewall 7.2
PHP PHP 4.1.1
Conectiva Linux 7.0
PHP PHP 4.1 .0
S.u.S.E. Linux 8.0
S.u.S.E. Linux 8.0 i386
PHP PHP 4.0.7
PHP PHP 4.0.6
Caldera OpenLinux Server 3.1
Caldera OpenLinux Server 3.1.1
Caldera OpenLinux Workstation 3.1
Caldera OpenLinux Workstation 3.1.1
HP Secure OS software for Linux 1.0
IBM AIX 4.3
IBM AIX 4.3.1
IBM AIX 4.3.2
IBM AIX 4.3.3
IBM AIX 5.1
MandrakeSoft Corporate Server 1.0.1
MandrakeSoft Linux Mandrake 7.1
MandrakeSoft Linux Mandrake 7.2
MandrakeSoft Linux Mandrake 8.0
MandrakeSoft Linux Mandrake 8.0 ppc
MandrakeSoft Linux Mandrake 8.1
MandrakeSoft Linux Mandrake 8.1 ia64
RedHat Linux 7.0
RedHat Linux 7.0 alpha
RedHat Linux 7.0 i386
RedHat Linux 7.1
RedHat Linux 7.1 alpha
RedHat Linux 7.1 i386
RedHat Linux 7.1 ia64
RedHat Linux 7.2
RedHat Linux 7.2 i386
RedHat Linux 7.2 ia64
S.u.S.E. Linux 7.2
S.u.S.E. Linux 7.2 i386
S.u.S.E. Linux 7.3
S.u.S.E. Linux 7.3 i386
S.u.S.E. Linux 7.3 ppc
S.u.S.E. Linux 7.3 sparc
Sun Cobalt RaQ 550
Sun LX50
Trustix Secure Linux 1.5
PHP PHP 4.0.5
PHP PHP 4.0.4
Compaq Compaq Secure Web Server PHP 1.0
Conectiva Linux 6.0
Guardian Digital Engarde Secure Linux 1.0.1
S.u.S.E. Linux 7.0
S.u.S.E. Linux 7.0 alpha
S.u.S.E. Linux 7.0 i386
S.u.S.E. Linux 7.0 ppc
S.u.S.E. Linux 7.0 sparc
S.u.S.E. Linux 7.1
S.u.S.E. Linux 7.1 alpha
S.u.S.E. Linux 7.1 ppc
S.u.S.E. Linux 7.1 sparc
S.u.S.E. Linux 7.1 x86
S.u.S.E. Linux 7.2
PHP PHP 4.0.3
Debian Linux 2.2
Debian Linux 2.2 68k
Debian Linux 2.2 alpha
Debian Linux 2.2 arm
Debian Linux 2.2 IA32
Debian Linux 2.2 powerpc
Debian Linux 2.2 sparc
Sun Cobalt Control Station 4100CS
Sun Cobalt Qube3 Japanese 4000WGJ
Sun Cobalt Qube3 Japanese w/ Caching and RAID 4100WGJ
Sun Cobalt Qube3 Japanese w/Caching 4010WGJ
Sun Cobalt RaQ XTR 3500R
Sun Cobalt RaQ XTR Japanese 3500Rja
PHP PHP 4.0.2
PHP PHP 4.0.1
Sun Cobalt Qube3 4000WG
Sun Cobalt Qube3 w/ Caching and RAID 4100WG
Sun Cobalt Qube3 w/Caching 4010WG
Sun Cobalt RaQ4 3001R
Sun Cobalt RaQ4 Japanese RAID 3100Rja
Sun Cobalt RaQ4 RAID 3100R
PHP PHP 4.0 0
HP HPUX B.11.23
HP HPUX B.11.22
HP HPUX B.11.11
HP HPUX B.11.11
HP HPUX B.11.00
Avaya S8700 R2.0.1
Avaya S8700 R2.0.0
Avaya S8500 R2.0.1
Avaya S8500 R2.0.0
Avaya S8300 R2.0.1
Avaya S8300 R2.0.0
Avaya Integrated Management
Avaya Converged Communications Server 2.0
Apple Mac OS X Server 10.3.7
Apple Mac OS X Server 10.3.6
Apple Mac OS X Server 10.3.5
Apple Mac OS X Server 10.3.4
Apple Mac OS X Server 10.3.3
Apple Mac OS X Server 10.3.2
Apple Mac OS X Server 10.3.1
Apple Mac OS X Server 10.3
Apple Mac OS X Server 10.2.8
Apple Mac OS X Server 10.2.7
Apple Mac OS X Server 10.2.6
Apple Mac OS X Server 10.2.5
Apple Mac OS X Server 10.2.4
Apple Mac OS X Server 10.2.3
Apple Mac OS X Server 10.2.2
Apple Mac OS X Server 10.2.1
Apple Mac OS X Server 10.2
Apple Mac OS X Server 10.1.5
Apple Mac OS X Server 10.1.4
Apple Mac OS X Server 10.1.3
Apple Mac OS X Server 10.1.2
Apple Mac OS X Server 10.1.1
Apple Mac OS X Server 10.1
Apple Mac OS X Server 10.0
Apple Mac OS X 10.3.7
Apple Mac OS X 10.3.6
Apple Mac OS X 10.3.5
Apple Mac OS X 10.3.4
Apple Mac OS X 10.3.3
Apple Mac OS X 10.3.2
Apple Mac OS X 10.3.1
Apple Mac OS X 10.3
Apple Mac OS X 10.2.8
Apple Mac OS X 10.2.7
Apple Mac OS X 10.2.6
Apple Mac OS X 10.2.5
Apple Mac OS X 10.2.4
Apple Mac OS X 10.2.3
Apple Mac OS X 10.2.2
Apple Mac OS X 10.2.1
Apple Mac OS X 10.2
Apple Mac OS X 10.1.5
Apple Mac OS X 10.1.4
Apple Mac OS X 10.1.3
Apple Mac OS X 10.1.2
Apple Mac OS X 10.1.1
Apple Mac OS X 10.1
Apple Mac OS X 10.1
Apple Mac OS X 10.0.4
Apple Mac OS X 10.0.3
Apple Mac OS X 10.0.2
Apple Mac OS X 10.0.1
Apple Mac OS X 10.0 3
Apple Mac OS X 10.0 |
| Not Vulnerable |
Apple Mac OS X Server 10.3.8
Apple Mac OS X 10.3.8 |
| Code |
No exploit is required, but an example was provided.
If a web application uses strip_tags() similar to:
$example = strip_tags($_REQUEST['user_input'], "<b><i><s>");
Then possible tags that may lead to exploitation might be:
<�script> or <s�cript>
|
| TXT |
 |
|
Advertising
|
|
Copyright 2007,
SecurityDot
Fri, 18 Dec 2009 12:53:26 +0000
Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS
EXPLOITS
VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
WWW.89 nohelia po news for c maxcpm.inf CineGoer.C www.jjwxc. aunti as/400 CMS is Fre lo419l 200 /compo gatinhas www.tf009. Free+xxxmo Www.deshe www.aus888 Www.deshe Free sexfr MALLIKA SX www.sexy . Sexy video iChat Wap4sex.ne MOVE.COM www.trish www.life12 preparatio www.tianma guest book maxcpm.inf news for C IceWarp We www.oa007. www.525m.c B P vnc news for c iptv phpnuke 6. TRISHABATH PDshopPro WikiNi seximages. www.zgquan php-nuke 2 www.youfh. FUCKING GI quake 3 up www 3pic c
|
