CVE-2006-0996

Impact:
Low
Public Date:
2006-03-30
Bugzilla:
1618022: CVE-2006-0996 security flaw

The MITRE CVE dictionary describes this issue as:

Cross-site scripting (XSS) vulnerability in phpinfo (info.c) in PHP 5.1.2 and 4.4.2 allows remote attackers to inject arbitrary web script or HTML via long array variables, including (1) a large number of dimensions or (2) long values, which prevents HTML tags from being removed.

Find out more about CVE-2006-0996 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 3 (php) RHSA-2006:0276 2006-04-25
Red Hat Enterprise Linux 2.1 RHSA-2006:0501 2006-05-23
Stronghold 4 for Red Hat Enterprise Linux RHSA-2006:0549 2006-07-27
Red Hat Enterprise Linux 4 (php) RHSA-2006:0276 2006-04-25

This page is generated automatically and has not been checked for errors or omissions.

For clarification or corrections please contact Red Hat Product Security.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.