Re: Advisory 14/2006: Dotdeb PHP Email Header Injection Vulnerability
On Tuesday 14 November 2006 17:32, Stefan Esser wrote: Application: Dotdeb PHP 5.2.0 Rev 3 Severity: Calling PHP scripts with special crafted URLs can result in arbitrary email header injection Risk: Critical Vendor Status: Vendor has fixed this with Dotdeb PHP
Advisory 14/2006: Dotdeb PHP Email Header Injection Vulnerability
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hardened-PHP Project www.hardened-php.net -= Security Advisory =- Advisory: Dotdeb PHP Email Header Injection Vulnerability Release Date: 2006/11/14 Last Modified: