Re: [Full-disclosure] Critical PHP bug - act ASAP if you are running web with sensitive data

To: Tõnu Samuel <tonu@xxxxxx>
Subject: Re: [Full-disclosure] Critical PHP bug - act ASAP if you are running web with sensitive data
From: Jasper Bryant-Greene <jasper@xxxxxxxxxxx>
Date: Wed, 29 Mar 2006 15:22:14 +1200
Cc: Stefan Esser <sesser@xxxxxxx>, full-disclosure@xxxxxxxxxxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx
In-reply-to: <44299554.9050008@xxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Organization: Album Limited
References: <200603281555.24868.tonu@xxxxxx> <200603282051.00104.tonu@xxxxxx> <44297F63.9070508@xxxxxxx> <44299554.9050008@xxxxxx>
User-agent: Mail/News 1.5 (X11/20060319)

Tõnu Samuel wrote:

Nice! I was really nervous already as I got bombed with e-mails and Ireally did not knew much more than was discovered. Meanwhile I am bitdisappointed that we had nearly month such a bug in wild and softwaredistributors like SuSE in my case did not published patches. I think aslong enough time passed and I hope distributors maybe need to see it - Ipublish exploit. Sorry, this was discovered independently and for me itlooks like very serious problem.
Script is:
<?php

  $foobar=html_entity_decode($_GET['foo']);
  echo $foobar;

?>

I very much doubt there are many applications at all containing codelike this. It is illogical to be decoding html entities from user input.Therefore I would not call this a "very serious problem" and certainlynot a critical bug.


Jasper

Follow-Ups:
- Re: [Full-disclosure] Critical PHP bug - act ASAP if you are running web with sensitive data
  - From: Moriyoshi Koizumi
- Re: [Full-disclosure] Critical PHP bug - act ASAP if you are running web with sensitive data
  - From: Jeff Rosowski
- Re: [Full-disclosure] Critical PHP bug - act ASAP if you are running web with sensitive data
  - From: Tõnu Samuel

References:
- Critical PHP bug - act ASAP if you are running web with sensitive data
  - From: Tõnu Samuel
- Re: [Full-disclosure] Critical PHP bug - act ASAP if you are running web with sensitive data
  - From: Stefan Esser

Prev by Date: PhxContacts <= 0.93.1 beta Multiple SQL injection & xss
Next by Date: Resource to Report and Stop Phishing Scams
Previous by thread: Re: [Full-disclosure] Critical PHP bug - act ASAP if you are runningweb with sensitive data
Next by thread: Re: [Full-disclosure] Critical PHP bug - act ASAP if you are running web with sensitive data
Index(es):
- Date
- Thread