Serious PHP flaw



PHP which is a widely used scripting language for webpages has been found to have a serious vulnerability. The Inquirer is reporting on the announcement at hardened-php.net that the vulnerabilities are in the XML-RPC for PHP and PEAR XML-RPC libraries. This is apparently an eval() vulnerability similar to one earlier in the year.



The hardened-php project has developed a fix that removes the use of eval() from both libraries. The fix was developed with the maintainers of both libraries.

Related Posts

Blog Traffic Exchange Related Posts
  • List of Open Source software Packages The following is long, but likely not complete. This is a list of open-source software packages: Computer software licensed under an open-source license. Software that fits the Free software definition may be more appropriately called free software; the GNU project in particular objects to their works being referred to as......
  • Windows more secure than Linux? For the last week, I've seen various headlines referring to a report from US-CERT that indicated 2005 had 5,198 security flaws reported. Out of those 2,328 were reported for Linux/Unix, 812 for Windows and 2,058 affecting more than one operating system. Now, I'm seeing all sorts of headlines about how......
  • Firefox code under the microscope So, the stories are out of the analysis of the code for Mozilla Firefox. It seems there were a large number of potential flaws found (71 potential security vulnerabilities) according to the article. This was done using an automated tool and many say, that in order to evaluate the true......
Blog Traffic Exchange Related Websites
  • Review: Joey Green's Fix-It Magic: More than 1,971 Quick-and-Easy Household Solutions Using Labeled the Mad Scientist of Home Improvement, Joey Green has come out with another book where he lists of over 1900 easy household solutions using products you probably already have around the house. This tome is definitely a good one for the green movement, as you will be reusing products......
  • Browser History Hijacking Flaw Browser history hijacking is a flaw in a web browser that allows certain websites access to all the sites a user has ever visited.  This is a techniques used by sporting, news, movie, financial and porn websites to better place ads and check to see if you have visited any......
  • Microsoft's Internet Explorer is Vulnerable to Attacks Hi Guyz, Just got the news. Microsoft Internet Explorer users, beware. There's a security flaw in all versions of the browser that leaves you wide open for attack. At least two million computers have already been infected. The exploit doesn't require users to click on links or download software from......
en.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site