CVE-2006-0207

PHP 5.1.1 - HTTP Response Splitting via Set-Cookie Header

Title source: llm

Description

Multiple HTTP response splitting vulnerabilities in PHP 5.1.1 allow remote attackers to inject arbitrary HTTP headers via a crafted Set-Cookie header, related to the (1) session extension (aka ext/session) and the (2) header function.

References (18)

Core 18

Core References

Vendor Advisory vendor-advisory x_refsource_mandriva

http://www.mandriva.com/security/advisories?name=MDKSA-2006:028

Vendor Advisory x_refsource_confirm

http://www.php.net/release_5_1_2.php

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/19355

Patch, Vendor Advisory vdb-entry x_refsource_sectrack

http://securitytracker.com/id?1015484

Vendor Advisory vendor-advisory x_refsource_ubuntu

https://usn.ubuntu.com/261-1/

Various Sources vendor-advisory x_refsource_suse

http://lists.suse.de/archive/suse-security-announce/2006-Feb/0008.html

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/18431

Vendor Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2006/0369

Vendor Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2006/0177

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/19179

Vendor Advisory x_refsource_misc

http://www.hardened-php.net/advisory_012006.112.html

Patch, Vendor Advisory vendor-advisory x_refsource_gentoo

http://www.gentoo.org/security/en/glsa/glsa-200603-22.xml

Third Party Advisory vendor-advisory x_refsource_debian

http://www.debian.org/security/2007/dsa-1331

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/18697

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/24094

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/25945

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/19012

Patch vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/16220

Scores

EPSS 0.0500

EPSS Percentile 89.8%

Details

CWE

CWE-94

Status published

Products (9)

php/php 5.0 rc1 (3 CPE variants)

php/php 5.0.0

php/php 5.0.1

php/php 5.0.2

php/php 5.0.3

php/php 5.0.4

php/php 5.0.5

php/php 5.1.0

php/php 5.1.1

Published Jan 13, 2006

Tracked Since Feb 18, 2026