Serious PHP flaw



PHP which is a widely used scripting language for webpages has been found to have a serious vulnerability. The Inquirer is reporting on the announcement at hardened-php.net that the vulnerabilities are in the XML-RPC for PHP and PEAR XML-RPC libraries. This is apparently an eval() vulnerability similar to one earlier in the year.



The hardened-php project has developed a fix that removes the use of eval() from both libraries. The fix was developed with the maintainers of both libraries.

Related Posts

Blog Traffic Exchange Related Posts
  • List of Open Source software Packages The following is long, but likely not complete. This is a list of open-source software packages: Computer software licensed under an open-source license. Software that fits the Free software definition may be more appropriately called free software; the GNU project in particular objects to their works being referred to as......
  • OTHER Sony DRM software has security flaws too. You almost want to bury your head in the sand at this point if you're Sony.... Freedom-to-tinker has some details. The last couple weeks the XCP copy protection that Sony uses has been the center of a Firestorm for rootkit capabilities and massive security problems. Well, it seems the OTHER......
  • SONY DRM rootkit - the gift that keeps on giving Well... I said, more legs than a centipede for this one.... It looks as though the uninstaller from Sony is an activex control that may have some SEVERE security implications. The ActiveX invokes a command to reboot the computer (RebootMachine). (Which is likely remotely exploitable). Also it appears to use......
Blog Traffic Exchange Related Websites
  • Review: Joey Green's Fix-It Magic: More than 1,971 Quick-and-Easy Household Solutions Using Labeled the Mad Scientist of Home Improvement, Joey Green has come out with another book where he lists of over 1900 easy household solutions using products you probably already have around the house. This tome is definitely a good one for the green movement, as you will be reusing products......
  • Problems with GrungeMag Theme were Solved Since switching to the GrungeMag theme about two weeks ago, I've been having a problem where the category menu is not working. The theme use Superfish style menu which is very awesome but not until today the category menu is working nicely in this blog. GrungeMag by Elegant Themes is......
  • Is Social Security a Ponzi Scheme? (Part 3: How to Fix Social Security) The following is a continuation of the Is Social Security a Ponzi Scheme? (Part 1) and Is Social Security a Ponzi Scheme? (Part 2: An Explanation of Social Security Works). Those articles explained the history of Charles Ponzi and the original Ponzi scheme and explained how Social Security works. In......
en.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site