Thanks Mosh....thats what I was looking for :) -----Original Message----- From: Mosh Teitelbaum <[EMAIL PROTECTED]> Sent: Dec 20, 2004 4:00 PM To: CF-Talk <cf-talk@houseoffusion.com> Subject: RE: Major PHP flaw??
"The Hardened-PHP Project has announced several serious and according to them, easy-to-exploit vulnerabilities within PHP. A flaw within the function unserialize() is rated as very critical for millions of PHP servers, because it is exposed to remote attackers through lots of very popular webapplications. The list includes forum software like phpBB2, WBB2, Invision Board and vBulletin. It is time to upgrade now." http://developers.slashdot.org/article.pl?sid=04/12/17/1641212&tid=169&tid=1 72 -- Mosh Teitelbaum evoch, LLC Tel: (301) 942-5378 Fax: (301) 933-3651 Email: [EMAIL PROTECTED] WWW: http://www.evoch.com/ > -----Original Message----- > From: Bryan Stevenson [mailto:[EMAIL PROTECTED] > Sent: Monday, December 20, 2004 3:46 PM > To: CF-Talk > Subject: Re: Major PHP flaw?? > > > and the line monster ate it....here we go for try # 2: > > Security Notice: > > There has been an anouncement of a serious security problem with > all current > versions of PHP, a scripting language that you may be using on your site. > > PHP is used for many free forum, message board and link > management scripts. > A security flaw in PHP can allow the whole server to be compromised by > hackers > who can then damage or deface all the sites on that server. This flaw is > already being exploited, so time is of the escence in fixing > this. This is > an > unacceptable security risk to WeDoHosting.com Customers. > > If you are hosting your service on our Windows servers, you may > ignore this > notice since this is not applicable to Windows servers. > > If you are not using PHP on your website, then you may ignore > this notice as > well. > > Bryan Stevenson B.Comm. > VP & Director of E-Commerce Development > Electric Edge Systems Group Inc. > phone: 250.480.0642 > fax: 250.480.1264 > cell: 250.920.8830 > e-mail: [EMAIL PROTECTED] > web: www.electricedgesystems.com > ----- Original Message ----- > From: "Bryan Stevenson" <[EMAIL PROTECTED]> > To: "CF-Talk" <cf-talk@houseoffusion.com> > Sent: Monday, December 20, 2004 12:43 PM > Subject: Major PHP flaw?? > > > > Hey All, > > > > I just had this sent to me from a local ISP, but without any > > specifics....anybody know anything? > > > > I must say it's nice to see that it's no effecting Windows > Servers for a > > change ;-) > > > > > > > > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Special thanks to the CF Community Suite Silver Sponsor - New Atlanta http://www.newatlanta.com Message: http://www.houseoffusion.com/lists.cfm/link=i:4:188327 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
