CVE - CVE-2006-4020

CVE-ID
CVE-2006-4020	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
scanf.c in PHP 5.1.4 and earlier, and 4.4.3 and earlier, allows context-dependent attackers to execute arbitrary code via a sscanf PHP function call that performs argument swapping, which increments an index past the end of an array and triggers a buffer over-read.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:1016984 URL:http://securitytracker.com/id?1016984 MISC:1341 URL:http://securityreason.com/securityalert/1341 MISC:19415 URL:http://www.securityfocus.com/bid/19415 MISC:20060804 php local buffer underflow could lead to arbitary code execution URL:http://www.securityfocus.com/archive/1/442438/30/0/threaded MISC:20061001-01-P URL:ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.asc MISC:21403 URL:http://secunia.com/advisories/21403 MISC:21467 URL:http://secunia.com/advisories/21467 MISC:21546 URL:http://secunia.com/advisories/21546 MISC:21608 URL:http://secunia.com/advisories/21608 MISC:21683 URL:http://secunia.com/advisories/21683 MISC:21768 URL:http://secunia.com/advisories/21768 MISC:21847 URL:http://secunia.com/advisories/21847 MISC:22004 URL:http://secunia.com/advisories/22004 MISC:22039 URL:http://secunia.com/advisories/22039 MISC:22069 URL:http://secunia.com/advisories/22069 MISC:22440 URL:http://secunia.com/advisories/22440 MISC:22487 URL:http://secunia.com/advisories/22487 MISC:22538 URL:http://secunia.com/advisories/22538 MISC:23247 URL:http://secunia.com/advisories/23247 MISC:ADV-2006-3193 URL:~~http://www.vupen.com/english/advisories/2006/3193~~ (Obsolete source) MISC:GLSA-200608-28 URL:http://security.gentoo.org/glsa/glsa-200608-28.xml MISC:MDKSA-2006:144 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2006:144~~ (Obsolete source) MISC:RHSA-2006:0669 URL:http://www.redhat.com/support/errata/RHSA-2006-0669.html MISC:RHSA-2006:0682 URL:http://www.redhat.com/support/errata/RHSA-2006-0682.html MISC:RHSA-2006:0688 URL:http://rhn.redhat.com/errata/RHSA-2006-0688.html MISC:RHSA-2006:0736 URL:http://rhn.redhat.com/errata/RHSA-2006-0736.html MISC:SUSE-SA:2006:052 URL:http://www.novell.com/linux/security/advisories/2006_52_php.html MISC:SUSE-SR:2006:019 URL:http://www.novell.com/linux/security/advisories/2006_19_sr.html MISC:SUSE-SR:2006:020 URL:http://www.novell.com/linux/security/advisories/2006_20_sr.html MISC:SUSE-SR:2006:022 URL:http://www.novell.com/linux/security/advisories/2006_22_sr.html MISC:USN-342-1 URL:http://www.ubuntu.com/usn/usn-342-1 MISC:http://bugs.php.net/bug.php?id=38322 URL:http://bugs.php.net/bug.php?id=38322 MISC:http://support.avaya.com/elmodocs2/security/ASA-2006-221.htm URL:http://support.avaya.com/elmodocs2/security/ASA-2006-221.htm MISC:http://support.avaya.com/elmodocs2/security/ASA-2006-222.htm URL:http://support.avaya.com/elmodocs2/security/ASA-2006-222.htm MISC:http://support.avaya.com/elmodocs2/security/ASA-2006-223.htm URL:http://support.avaya.com/elmodocs2/security/ASA-2006-223.htm MISC:http://www.php.net/ChangeLog-5.php#5.1.5 URL:http://www.php.net/ChangeLog-5.php#5.1.5 MISC:http://www.php.net/release_5_1_5.php URL:http://www.php.net/release_5_1_5.php MISC:http://www.plain-text.info/sscanf_bug.txt URL:http://www.plain-text.info/sscanf_bug.txt MISC:oval:org.mitre.oval:def:11062 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11062
Assigning CNA
Red Hat, Inc.
Date Record Created
20060808	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20060808)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)