info
discussion
exploit
solution
references
PHP 5 User-Supplied Session ID Input Validation Vulnerability
References:
PHP 5.1.2. Release Announcement
(PHP)
PHP Downloads Page
(PHP)
PHP ext/session HTTP Response Splitting Vulnerability
(Stefan Esser
)
Advisory 01/2006: PHP ext/session HTTP Response Splitting Vulnerability
(Stefan Esser
)
Privacy Statement
Copyright 2010, SecurityFocus