ID: 30439 Comment by: 1235st at mailinator dot com Reported By: dmp-php at dplhenterprises dot com Status: No Feedback Bug Type: FTP related Operating System: Windows 2000 PHP Version: 4.3.9 New Comment:
http://g1.com spam test Previous Comments: ------------------------------------------------------------------------ [2005-02-11 01:00:33] php-bugs at lists dot php dot net No feedback was provided for this bug for over a week, so it is being suspended automatically. If you are able to provide the information that was originally requested, please do so and change the status of the bug back to "Open". ------------------------------------------------------------------------ [2005-02-03 04:48:35] [EMAIL PROTECTED] Please try using this CVS snapshot: http://snaps.php.net/php4-STABLE-latest.tar.gz For Windows: http://snaps.php.net/win32/php4-win32-STABLE-latest.zip ------------------------------------------------------------------------ [2004-12-17 16:32:01] ajbaas at cs dot uu dot nl For me, this problem was resolved with php 4.3.10. Can someone else confirm? ------------------------------------------------------------------------ [2004-12-12 05:48:46] sirbinam at hotmail dot com I submitted a patch to the internals list in response to bug# 27633, that *may* fix this problem. I found 2 problems, one, *some* servers send a '\r' before every '\n', so if the source file has '\r\n' style line endings the buffer on the client side contains '\r\r\n' and the code didn't handle this. Secondly, I noticed in my testing of the original code that if the data in the buffer ended with a line ending that the pointer would be moved past the end of the data, and write garbage data to the stream, there were a bunch of null characters, and data from other processes. This would only apply to win32 systems doing transfers in ascii mode. ------------------------------------------------------------------------ [2004-12-10 18:21:18] a dot j dot baas at students dot uu dot nl I have tested this also, but on a linux machine, i think working with proftpd. For me, i stumbled uppon this issue when downloading small files with a huge amount of linebrakes. the issue should be rated high, because i get what looks like a dump of the php memory, including some source code of other sites that run on the server. I could easily exploit this to retreive database passwords etc. it also causes the script that does the downloading to crash without outputting anything to the browser. If you need additional testcases(i still have the txt file that causes the crash) please let me know. ------------------------------------------------------------------------ The remainder of the comments for this report are too long. To view the rest of the comments, please view the bug report online at http://bugs.php.net/30439 -- Edit this bug report at http://bugs.php.net/?id=30439&edit=1
