oval:org.mitre.oval:def:10619

Definition Id: oval:org.mitre.oval:def:10619
 
Oval ID: oval:org.mitre.oval:def:10619
Title: The strip_tags function in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, does not filter null (\0) characters within tag names when restricting input to allowed tags, which allows dangerous tags to be processed by web browsers such as Internet Explorer and Safari, which ignore null characters and facilitate the exploitation of cross-site scripting (XSS) vulnerabilities.
Description: The strip_tags function in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, does not filter null (\0) characters within tag names when restricting input to allowed tags, which allows dangerous tags to be processed by web browsers such as Internet Explorer and Safari, which ignore null characters and facilitate the exploitation of cross-site scripting (XSS) vulnerabilities.
Family: unix Class: vulnerability
Reference(s): CVE-2004-0595
Version: 5
Platform(s): Red Hat Enterprise Linux 3
CentOS Linux 3
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:16651
 
Oval ID: oval:org.mitre.oval:def:16651
Title: CentOS Linux 3.x
Description: The operating system installed on the system is CentOS Linux 3.x
Family: unix Class: inventory
Reference(s): cpe:/o:centos:centos:3
Version: 3
Platform(s): CentOS Linux 3
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:10619
Definition Id: oval:org.mitre.oval:def:11782
 
Oval ID: oval:org.mitre.oval:def:11782
Title: The operating system installed on the system is Red Hat Enterprise Linux 3
Description: The operating system installed on the system is Red Hat Enterprise Linux 3.
Family: unix Class: inventory
Reference(s): cpe:/o:redhat:enterprise_linux:3
Version: 7
Platform(s): Red Hat Enterprise Linux 3
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:10619