CVE-2009-4142

EUVD-2009-4112
The htmlspecialchars function in PHP before 5.2.12 does not properly handle (1) overlong UTF-8 sequences, (2) invalid Shift_JIS sequences, and (3) invalid EUC-JP sequences, which allows remote attackers to conduct cross-site scripting (XSS) attacks by placing a crafted byte sequence before a special character.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 94%
Affected Products (NVD)
VendorProductVersion
phpphp
𝑥
≤ 5.2.11
phpphp
1.0
phpphp
2.0
phpphp
2.0b10:b10
phpphp
3.0
phpphp
3.0.1
phpphp
3.0.2
phpphp
3.0.3
phpphp
3.0.4
phpphp
3.0.5
phpphp
3.0.6
phpphp
3.0.7
phpphp
3.0.8
phpphp
3.0.9
phpphp
3.0.10
phpphp
3.0.11
phpphp
3.0.12
phpphp
3.0.13
phpphp
3.0.14
phpphp
3.0.15
phpphp
3.0.16
phpphp
3.0.17
phpphp
3.0.18
phpphp
4.0
phpphp
4.0:beta_4_patch1
phpphp
4.0:beta1
phpphp
4.0:beta2
phpphp
4.0:beta3
phpphp
4.0:beta4
phpphp
4.0:rc1
phpphp
4.0:rc2
phpphp
4.0.0
phpphp
4.0.1
phpphp
4.0.1:patch1
phpphp
4.0.1:patch2
phpphp
4.0.2
phpphp
4.0.3
phpphp
4.0.3:patch1
phpphp
4.0.4
phpphp
4.0.4:patch1
phpphp
4.0.5
phpphp
4.0.6
phpphp
4.0.7
phpphp
4.0.7:rc1
phpphp
4.0.7:rc2
phpphp
4.0.7:rc3
phpphp
4.0.7:rc4
phpphp
4.1.0
phpphp
4.1.1
phpphp
4.1.2
phpphp
4.2
phpphp
4.2.0
phpphp
4.2.1
phpphp
4.2.2
phpphp
4.2.3
phpphp
4.3.0
phpphp
4.3.1
phpphp
4.3.2
phpphp
4.3.3
phpphp
4.3.4
phpphp
4.3.5
phpphp
4.3.6
phpphp
4.3.7
phpphp
4.3.8
phpphp
4.3.9
phpphp
4.3.10
phpphp
4.3.11
phpphp
4.4.0
phpphp
4.4.1
phpphp
4.4.2
phpphp
4.4.3
phpphp
4.4.4
phpphp
4.4.5
phpphp
4.4.6
phpphp
4.4.7
phpphp
4.4.8
phpphp
4.4.9
phpphp
5.0:rc1
phpphp
5.0:rc2
phpphp
5.0:rc3
phpphp
5.0.0
phpphp
5.0.0:beta1
phpphp
5.0.0:beta2
phpphp
5.0.0:beta3
phpphp
5.0.0:beta4
phpphp
5.0.0:rc1
phpphp
5.0.0:rc2
phpphp
5.0.0:rc3
phpphp
5.0.1
phpphp
5.0.2
phpphp
5.0.3
phpphp
5.0.4
phpphp
5.0.5
phpphp
5.1.0
phpphp
5.1.1
phpphp
5.1.3
phpphp
5.1.4
phpphp
5.1.5
phpphp
5.1.6
phpphp
5.2.0
phpphp
5.2.1
phpphp
5.2.2
phpphp
5.2.3
phpphp
5.2.4
phpphp
5.2.5
phpphp
5.2.6
phpphp
5.2.8
phpphp
5.2.9
phpphp
5.2.10
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
php5
dapper
Fixed 5.1.2-1ubuntu3.18
released
hardy
Fixed 5.2.4-2ubuntu5.10
released
intrepid
Fixed 5.2.6-2ubuntu4.6
released
jaunty
Fixed 5.2.6.dfsg.1-3ubuntu4.5
released
karmic
Fixed 5.2.10.dfsg.1-2ubuntu6.4
released
Common Weakness Enumeration
References
http://bugs.php.net/bug.php?id=49785
http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html
http://marc.info/?l=bugtraq&m=127680701405735&w=2
http://secunia.com/advisories/37821
http://secunia.com/advisories/38648
http://secunia.com/advisories/40262
http://securitytracker.com/id?1023372
http://support.apple.com/kb/HT4077
http://www.debian.org/security/2010/dsa-2001
http://www.php.net/ChangeLog-5.php
http://www.php.net/releases/5_2_12.php
http://www.securityfocus.com/bid/37389
http://www.vupen.com/english/advisories/2009/3593
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10005
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7085
http://bugs.php.net/bug.php?id=49785
http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html
http://marc.info/?l=bugtraq&m=127680701405735&w=2
http://secunia.com/advisories/37821
http://secunia.com/advisories/38648
http://secunia.com/advisories/40262
http://securitytracker.com/id?1023372
http://support.apple.com/kb/HT4077
http://www.debian.org/security/2010/dsa-2001
http://www.php.net/ChangeLog-5.php
http://www.php.net/releases/5_2_12.php
http://www.securityfocus.com/bid/37389
http://www.vupen.com/english/advisories/2009/3593
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10005
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7085