PHP Safe Mode Bypass Weakness Uncovered in error_log

    Date: 06/26/06 (Java Web)    Keywords: php, security, hosting

    Maksymilian Arciemowicz has discovered a weakness in PHP, which can be exploited by malicious, local users to bypass certain security restrictions. This could have a major impact in shared hosting systems. The weakness is caused due to an input validation error in the PHP error_log() function in the processing of the destination parameter. It can be [...]

    Source: http://blog.taragana.com/index.php/archive/php-safe-mode-bypass-weakness-uncovered-in-error_log/

« Rising Salaries and... || Free Privacy Protection Web... »
Search  •  Site Map  •  Set as Homepage  •  Add to Favourites  • 
antivirus | apache | asp | blogging | browser | bugtracking | cms | crm | css | database | ebay | ecommerce | google | hosting | html | java | jsp | linux | microsoft | mysql | offshore | offshoring | oscommerce | php | postgresql | programming | rss | security | seo | shopping | software | spam | spyware | sql | technology | templates | tracker | virus | web | xml | yahoo | home