Cert unveils serious PHP hole

Backdoor to the server...

Post a comment
Print

By Pia Heikkila, 1 March 2002 12:25

NEWS Researchers have found a serious vulnerability in server scripting software PHP. The open source scripting language could let hackers run random code or even crash the server, according to US-based security research laboratory Cert. Cert said the latest version, PHP4, is vulnerable but also an older version, PHP3 is at risk. Cert warned: "PHP can be installed on a variety of web servers, including Apache, IIS, Caudium, Netscape and iPlanet, OmniHTTPd and others. "Vulnerabilities in the php_mime_split function may allow an intruder to execute arbitrary code with the privileges of the web server." For more information, see
http://security.e-matters.de/advisories/012002.html

Post a comment
Print

Post your comment

In order to post a comment you need to be registered and logged in.

Latest Security stories

Featured white papers

The Value of Location Intelligence in the Communications Industry

Pitney Bowes

Public Services are under pressure, the challenge is to do more with less. How do you improve citizen satisfaction, increase cost efficiencies and improve service delivery? The power of location intelligence is helping many local authorities...

Download now »
Best Practices for Translating Customer Satisfaction into Revenue

Citrix Online

Today's support organisations are focused on two top-level metrics: financial results and customer satisfaction. For most, it's easy to track financial performance, but customer satisfaction is akin to speaking a foreign language...

Download now »
HP print solutions and 3M

Hewlett-Packard (HP)

The objective for 3M was to optimize office printing infrastructure at 3M locations worldwide, reduce total cost and environmental footprint. Some of the business benefits acheived by switching to HP print solutions...

Download now »

Check out these top business apps for your iPhone

Read article »
Photos »

Inside a Microsoft datacentre
Special report »

Green IT without losing your edge
Videos »

Peter Cochrane's latest video blog
Cheat Sheet »

What you need to know about Windows 7

Cert unveils serious PHP hole

Post your comment

Latest Security stories

Popular Security stories

Featured white papers

The Value of Location Intelligence in the Communications Industry

Best Practices for Translating Customer Satisfaction into Revenue

HP print solutions and 3M

Check out these top business apps for your iPhone

Inside a Microsoft datacentre

Green IT without losing your edge

Peter Cochrane's latest video blog

What you need to know about Windows 7

Home

Subscribe

About Us

Management

Technology

Special Features

Resources

Member Services

Cert unveils serious PHP hole

Recommended by silicon.com

Tags

Post your comment

Latest Security stories

Popular Security stories

Featured white papers

Check out these top business apps for your iPhone

Subscribe

About Us