I should point out that according to www.php.net, 4.1.2 should not be vulnerable.
On Thu, Feb 28, 2002 at 10:48:56AM -0800, [EMAIL PROTECTED] babbled thus: > From: [EMAIL PROTECTED] > Date: Thu, 28 Feb 2002 10:48:56 -0800 (PST) > To: [EMAIL PROTECTED] > Subject: Flaws found in PHP scripting language > > This ZDNN (http://www.zdnn.com/) story has been sent to you from [EMAIL PROTECTED] > > Message from sender: > Another reason why we shouldn't PHP-Nuke the website........ > ------------------------------------------------------- > Flaws found in PHP scripting language > By Robert Lemos Special to ZDNet News February 28, 2002, 4:30 AM PT > http://zdnet.com.com/2100-1105-847252.html > > A handful of holes appear in different versions of a common open-source scripting >language, PHP, and could allow attackers to crash an Apache Web site or compromise a >server. > > -- Mike Edwards Brainbench certified Master Linux Administrator http://www.brainbench.com/transcript.jsp?pid=158188 ----------------------------------- Unsolicited advertisments to this address are not welcome.
