CVE-2006-3017

EPSS 4.78% · P90 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-3017

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

zend_hash_del_key_or_index in zend_hash.c in PHP before 4.4.3 and 5.x before 5.1.3 can cause zend_hash_del to delete the wrong element, which prevents a variable from being unset even when the PHP unset function is called, which might cause the variable's value to be used in security-relevant operations.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

PHP zend_hash.c 输入验证漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

PHP是广泛使用的通用目的脚本语言，特别适合于Web开发，可嵌入到HTML中。 PHP 4.4.3以及5.1.3 之前的5.x版本中的中的zend_hash.c，其zend_hash_del_key_or_index 可能导致zend_hash_del删除错误的元素，它可以防止被取消设置即使取消设置PHP的函数被调用，这可能导致变量的值将用于安全相关的操作变量。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2006-3017

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2006-3017

请登录查看更多情报信息。

http://www.php.net/release_5_1_3.phpx_refsource_CONFIRM
http://support.avaya.com/elmodocs2/security/ASA-2006-175.htmx_refsource_CONFIRM
https://issues.rpath.com/browse/RPL-683x_refsource_CONFIRM
http://www.hardened-php.net/hphp/zend_hash_del_key_or_index_vulnerability.htmlx_refsource_MISC
http://cvs.php.net/viewcvs.cgi/Zend/zend_hash.c?hideattic=0&view=logx_refsource_CONFIRM
http://cvs.php.net/viewcvs.cgi/Zend/zend_hash.c?hideattic=0&r1=1.87.4.8.2.1&r2=1.87.4.8.2.2x_refsource_CONFIRM
http://www.osvdb.org/25255vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/21125third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/21050third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/21202third-party-advisoryx_refsource_SECUNIA
http://www.osvdb.org/26466vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/19927third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/21723third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/17843vdb-entryx_refsource_BID
http://secunia.com/advisories/21135third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/22713third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/21252third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/22225third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/21031third-party-advisoryx_refsource_SECUNIA
http://securitytracker.com/id?1016649vdb-entryx_refsource_SECTRACK
http://securitytracker.com/id?1016306vdb-entryx_refsource_SECTRACK
http://www.debian.org/security/2006/dsa-1206vendor-advisoryx_refsource_DEBIAN
https://usn.ubuntu.com/320-1/vendor-advisoryx_refsource_UBUNTU
http://www.turbolinux.com/security/2006/TLSA-2006-38.txtvendor-advisoryx_refsource_TURBO
ftp://patches.sgi.com/support/free/security/advisories/20060701-01-Uvendor-advisoryx_refsource_SGI
http://www.mandriva.com/security/advisories?name=MDKSA-2006:122vendor-advisoryx_refsource_MANDRIVA
http://www.redhat.com/support/errata/RHSA-2006-0568.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2006-0567.htmlvendor-advisoryx_refsource_REDHAT
http://rhn.redhat.com/errata/RHSA-2006-0549.htmlvendor-advisoryx_refsource_REDHAT
http://www.novell.com/linux/security/advisories/2006_31_php.htmlvendor-advisoryx_refsource_SUSE
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10118vdb-entrysignaturex_refsource_OVAL
https://exchange.xforce.ibmcloud.com/vulnerabilities/27396vdb-entryx_refsource_XF
http://www.securityfocus.com/archive/1/447866/100/0/threadedmailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/442437/100/0/threadedmailing-listx_refsource_BUGTRAQ
http://archives.neohapsis.com/archives/fulldisclosure/2006-08/0166.htmlmailing-listx_refsource_FULLDISC
https://nvd.nist.gov/vuln/detail/CVE-2006-3017

Same Patch Batch · n/a · 2006-06-14 · 8 CVEs total

CVE-2006-3016		PHP session.c 未明漏洞
CVE-2006-3018		PHP 会话扩展功能未明漏洞
CVE-2002-2214		PHP IMAP 服务拒绝漏洞
CVE-2002-2215		PHP imap_header服务拒绝漏洞
CVE-2003-1302		PHP服务拒绝漏洞
CVE-2003-1303		PHP缓冲区溢出漏洞
CVE-2006-3015		WinSCP 多个自变量注入漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2006-3017

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2006-3017

I. Basic Information for CVE-2006-3017

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2006-3017

III. Intelligence Information for CVE-2006-3017

Same Patch Batch · n/a · 2006-06-14 · 8 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2006-3017

Leave a comment