• info
• discussion
• exploit
• solution
• references

PHP 5 User-Supplied Session ID Input Validation Vulnerability

Solution:
The vendor has released PHP 5 version 5.1.2 to address this issue.

Please see the referenced vendor advisories for more information.


PHP PHP 5.0 .0

• PHP php-5.1.2.tar.bz2
  http://www.php.net/get/php-5.1.2.tar.bz2/from/a/mirror

PHP PHP 5.0 candidate 2

• PHP php-5.1.2.tar.bz2
  http://www.php.net/get/php-5.1.2.tar.bz2/from/a/mirror

PHP PHP 5.0 candidate 3

• PHP php-5.1.2.tar.bz2
  http://www.php.net/get/php-5.1.2.tar.bz2/from/a/mirror

PHP PHP 5.0.1

• PHP php-5.1.2.tar.bz2
  http://www.php.net/get/php-5.1.2.tar.bz2/from/a/mirror

PHP PHP 5.0.3

• PHP php-5.1.2.tar.bz2
  http://www.php.net/get/php-5.1.2.tar.bz2/from/a/mirror

PHP PHP 5.0.4

• Mandriva lib64php5_common5-5.0.4-9.3.20060mdk.x86_64.rpm
  Mandriva Linux 2006.0:
  http://wwwnew.mandriva.com/en/downloads/


• Mandriva libphp5_common5-5.0.4-9.3.20060mdk.i586.rpm
  Mandriva Linux 2006.0:
  http://wwwnew.mandriva.com/en/downloads/


• Mandriva php-cgi-5.0.4-9.3.20060mdk.i586.rpm
  Mandriva Linux 2006.0:
  http://wwwnew.mandriva.com/en/downloads/


• Mandriva php-cgi-5.0.4-9.3.20060mdk.x86_64.rpm
  Mandriva Linux 2006.0:
  http://wwwnew.mandriva.com/en/downloads/


• Mandriva php-cli-5.0.4-9.3.20060mdk.i586.rpm
  Mandriva Linux 2006.0:
  http://wwwnew.mandriva.com/en/downloads/


• Mandriva php-cli-5.0.4-9.3.20060mdk.x86_64.rpm
  Mandriva Linux 2006.0:
  http://wwwnew.mandriva.com/en/downloads/


• Mandriva php-devel-5.0.4-9.3.20060mdk.i586.rpm
  Mandriva Linux 2006.0:
  http://wwwnew.mandriva.com/en/downloads/


• Mandriva php-devel-5.0.4-9.3.20060mdk.x86_64.rpm
  Mandriva Linux 2006.0:
  http://wwwnew.mandriva.com/en/downloads/


• Mandriva php-fcgi-5.0.4-9.3.20060mdk.i586.rpm
  Mandriva Linux 2006.0:
  http://wwwnew.mandriva.com/en/downloads/


• Mandriva php-fcgi-5.0.4-9.3.20060mdk.x86_64.rpm
  Mandriva Linux 2006.0:
  http://wwwnew.mandriva.com/en/downloads/


• PHP php-5.1.2.tar.bz2
  http://www.php.net/get/php-5.1.2.tar.bz2/from/a/mirror

PHP PHP 5.0.5

• PHP php-5.1.2.tar.bz2
  http://www.php.net/get/php-5.1.2.tar.bz2/from/a/mirror


• Ubuntu libapache2-mod-php5_5.0.5-2ubuntu1.2_amd64.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5 _5.0.5-2ubuntu1.2_amd64.deb


• Ubuntu libapache2-mod-php5_5.0.5-2ubuntu1.2_i386.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5 _5.0.5-2ubuntu1.2_i386.deb


• Ubuntu libapache2-mod-php5_5.0.5-2ubuntu1.2_powerpc.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/libapache2-mod-php5 _5.0.5-2ubuntu1.2_powerpc.deb


• Ubuntu php-pear_5.0.5-2ubuntu1.2_all.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php-pear_5.0.5-2ubu ntu1.2_all.deb


• Ubuntu php5-cgi_5.0.5-2ubuntu1.2_amd64.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.0.5-2ubu ntu1.2_amd64.deb


• Ubuntu php5-cgi_5.0.5-2ubuntu1.2_i386.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.0.5-2ubu ntu1.2_i386.deb


• Ubuntu php5-cgi_5.0.5-2ubuntu1.2_powerpc.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cgi_5.0.5-2ubu ntu1.2_powerpc.deb


• Ubuntu php5-cli_5.0.5-2ubuntu1.2_amd64.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.0.5-2ubu ntu1.2_amd64.deb


• Ubuntu php5-cli_5.0.5-2ubuntu1.2_i386.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.0.5-2ubu ntu1.2_i386.deb


• Ubuntu php5-cli_5.0.5-2ubuntu1.2_powerpc.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-cli_5.0.5-2ubu ntu1.2_powerpc.deb


• Ubuntu php5-common_5.0.5-2ubuntu1.2_amd64.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.0.5-2 ubuntu1.2_amd64.deb


• Ubuntu php5-common_5.0.5-2ubuntu1.2_i386.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.0.5-2 ubuntu1.2_i386.deb


• Ubuntu php5-common_5.0.5-2ubuntu1.2_powerpc.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-common_5.0.5-2 ubuntu1.2_powerpc.deb


• Ubuntu php5-curl_5.0.5-2ubuntu1.2_amd64.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.0.5-2ub untu1.2_amd64.deb


• Ubuntu php5-curl_5.0.5-2ubuntu1.2_i386.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.0.5-2ub untu1.2_i386.deb


• Ubuntu php5-curl_5.0.5-2ubuntu1.2_powerpc.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-curl_5.0.5-2ub untu1.2_powerpc.deb


• Ubuntu php5-dev_5.0.5-2ubuntu1.2_amd64.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.0.5-2ubu ntu1.2_amd64.deb


• Ubuntu php5-dev_5.0.5-2ubuntu1.2_i386.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.0.5-2ubu ntu1.2_i386.deb


• Ubuntu php5-dev_5.0.5-2ubuntu1.2_powerpc.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-dev_5.0.5-2ubu ntu1.2_powerpc.deb


• Ubuntu php5-gd_5.0.5-2ubuntu1.2_amd64.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.0.5-2ubun tu1.2_amd64.deb


• Ubuntu php5-gd_5.0.5-2ubuntu1.2_i386.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.0.5-2ubun tu1.2_i386.deb


• Ubuntu php5-gd_5.0.5-2ubuntu1.2_powerpc.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-gd_5.0.5-2ubun tu1.2_powerpc.deb


• Ubuntu php5-ldap_5.0.5-2ubuntu1.2_amd64.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.0.5-2ub untu1.2_amd64.deb


• Ubuntu php5-ldap_5.0.5-2ubuntu1.2_i386.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.0.5-2ub untu1.2_i386.deb


• Ubuntu php5-ldap_5.0.5-2ubuntu1.2_powerpc.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-ldap_5.0.5-2ub untu1.2_powerpc.deb


• Ubuntu php5-mhash_5.0.5-2ubuntu1.2_amd64.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.0.5-2u buntu1.2_amd64.deb


• Ubuntu php5-mhash_5.0.5-2ubuntu1.2_i386.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.0.5-2u buntu1.2_i386.deb


• Ubuntu php5-mhash_5.0.5-2ubuntu1.2_powerpc.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mhash_5.0.5-2u buntu1.2_powerpc.deb


• Ubuntu php5-mysql_5.0.5-2ubuntu1.2_amd64.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.0.5-2u buntu1.2_amd64.deb


• Ubuntu php5-mysql_5.0.5-2ubuntu1.2_i386.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.0.5-2u buntu1.2_i386.deb


• Ubuntu php5-mysql_5.0.5-2ubuntu1.2_powerpc.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-mysql_5.0.5-2u buntu1.2_powerpc.deb


• Ubuntu php5-odbc_5.0.5-2ubuntu1.2_amd64.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.0.5-2ub untu1.2_amd64.deb


• Ubuntu php5-odbc_5.0.5-2ubuntu1.2_i386.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.0.5-2ub untu1.2_i386.deb


• Ubuntu php5-odbc_5.0.5-2ubuntu1.2_powerpc.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-odbc_5.0.5-2ub untu1.2_powerpc.deb


• Ubuntu php5-pgsql_5.0.5-2ubuntu1.2_amd64.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.0.5-2u buntu1.2_amd64.deb


• Ubuntu php5-pgsql_5.0.5-2ubuntu1.2_i386.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.0.5-2u buntu1.2_i386.deb


• Ubuntu php5-pgsql_5.0.5-2ubuntu1.2_powerpc.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-pgsql_5.0.5-2u buntu1.2_powerpc.deb


• Ubuntu php5-recode_5.0.5-2ubuntu1.2_amd64.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.0.5-2 ubuntu1.2_amd64.deb


• Ubuntu php5-recode_5.0.5-2ubuntu1.2_i386.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.0.5-2 ubuntu1.2_i386.deb


• Ubuntu php5-recode_5.0.5-2ubuntu1.2_powerpc.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-recode_5.0.5-2 ubuntu1.2_powerpc.deb


• Ubuntu php5-snmp_5.0.5-2ubuntu1.2_amd64.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.0.5-2ub untu1.2_amd64.deb


• Ubuntu php5-snmp_5.0.5-2ubuntu1.2_i386.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.0.5-2ub untu1.2_i386.deb


• Ubuntu php5-snmp_5.0.5-2ubuntu1.2_powerpc.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-snmp_5.0.5-2ub untu1.2_powerpc.deb


• Ubuntu php5-sqlite_5.0.5-2ubuntu1.2_amd64.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.0.5-2 ubuntu1.2_amd64.deb


• Ubuntu php5-sqlite_5.0.5-2ubuntu1.2_i386.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.0.5-2 ubuntu1.2_i386.deb


• Ubuntu php5-sqlite_5.0.5-2ubuntu1.2_powerpc.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sqlite_5.0.5-2 ubuntu1.2_powerpc.deb


• Ubuntu php5-sybase_5.0.5-2ubuntu1.2_amd64.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.0.5-2 ubuntu1.2_amd64.deb


• Ubuntu php5-sybase_5.0.5-2ubuntu1.2_i386.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.0.5-2 ubuntu1.2_i386.deb


• Ubuntu php5-sybase_5.0.5-2ubuntu1.2_powerpc.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-sybase_5.0.5-2 ubuntu1.2_powerpc.deb


• Ubuntu php5-xmlrpc_5.0.5-2ubuntu1.2_amd64.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.0.5-2 ubuntu1.2_amd64.deb


• Ubuntu php5-xmlrpc_5.0.5-2ubuntu1.2_i386.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.0.5-2 ubuntu1.2_i386.deb


• Ubuntu php5-xmlrpc_5.0.5-2ubuntu1.2_powerpc.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xmlrpc_5.0.5-2 ubuntu1.2_powerpc.deb


• Ubuntu php5-xsl_5.0.5-2ubuntu1.2_amd64.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.0.5-2ubu ntu1.2_amd64.deb


• Ubuntu php5-xsl_5.0.5-2ubuntu1.2_i386.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.0.5-2ubu ntu1.2_i386.deb


• Ubuntu php5-xsl_5.0.5-2ubuntu1.2_powerpc.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5-xsl_5.0.5-2ubu ntu1.2_powerpc.deb


• Ubuntu php5_5.0.5-2ubuntu1.2_all.deb
  Ubuntu 5.10:
  http://security.ubuntu.com/ubuntu/pool/main/p/php5/php5_5.0.5-2ubuntu1 .2_all.deb

PHP PHP 5.1

• PHP php-5.1.2.tar.bz2
  http://www.php.net/get/php-5.1.2.tar.bz2/from/a/mirror

PHP PHP 5.1.1

• PHP php-5.1.2.tar.bz2
  http://www.php.net/get/php-5.1.2.tar.bz2/from/a/mirror