Re: Advisory 14/2006: Dotdeb PHP Email Header Injection Vulnerability

On Tuesday 14 November 2006 17:32, Stefan Esser wrote:   Application: Dotdeb PHP 5.2.0 Rev 3      Severity: Calling PHP scripts with special crafted URLs                can result in arbitrary email header injection          Risk: Critical Vendor Status: Vendor has fixed this with Dotdeb PHP

Advisory 14/2006: Dotdeb PHP Email Header Injection Vulnerability

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hardened-PHP Project www.hardened-php.net -= Security Advisory =- Advisory: Dotdeb PHP Email Header Injection Vulnerability Release Date: 2006/11/14 Last Modified: