Re: GIF PHP Exploit — PHP Programming Language

You are here: Re: GIF PHP Exploit « PHP Programming Language « IT news, forums, messages

Posted by Rik on 06/22/07 15:50

On Fri, 22 Jun 2007 12:57:32 +0200, Schraalhans Keukenmeester
<Schraalhans@the.spamtrapexample.nl> wrote:

> It's been mentioned here a couple of times in different threads regarding
> image uploading. It's not new, but I found a clear explanation of what it
> is and how to deal with it. Hope it helps some of you.
>
> http://www.phpclasses.org/blog/post/67-PHP-security-exploit-with-GIF-images.html
>

I've seen these claims earlier, seems to have something to do with mostly
apache on Windows. Then again, I have not been able to reproduce these
kinds of vulnerabilities without instructing Apache to parse images for
PHP. Other people have claimed their servers do that automagically, I
haven't found the reason why.

--
Rik Wasmus

Navigation:

Next in forum: Re: Header already sent
Prev in forum: Re: GIF PHP Exploit
Thread view: Re: GIF PHP Exploit

[Reply to this message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация