Serious PHP flaw



PHP which is a widely used scripting language for webpages has been found to have a serious vulnerability. The Inquirer is reporting on the announcement at hardened-php.net that the vulnerabilities are in the XML-RPC for PHP and PEAR XML-RPC libraries. This is apparently an eval() vulnerability similar to one earlier in the year.



The hardened-php project has developed a fix that removes the use of eval() from both libraries. The fix was developed with the maintainers of both libraries.

Related Posts

Blog Traffic Exchange Related Posts
  • OTHER Sony DRM software has security flaws too. You almost want to bury your head in the sand at this point if you're Sony.... Freedom-to-tinker has some details. The last couple weeks the XCP copy protection that Sony uses has been the center of a Firestorm for rootkit capabilities and massive security problems. Well, it seems the OTHER......
  • January Patch Tuesday Microsoft has issued two advisories related to patches coming out today. Both are remote code execution vulnerabilities, the first affects Outlook and Exchange server, the second is related to embedded Web fonts. The links above don't yet seem active, but should go to the technet Security bulletins once Microsoft finishes......
  • Windows more secure than Linux? For the last week, I've seen various headlines referring to a report from US-CERT that indicated 2005 had 5,198 security flaws reported. Out of those 2,328 were reported for Linux/Unix, 812 for Windows and 2,058 affecting more than one operating system. Now, I'm seeing all sorts of headlines about how......
Blog Traffic Exchange Related Websites
  • Repairing Cracks in Walls If you have an older home that has some structural damage, or if you are starting to notice tiny cracks in the walls, the time to fix these is now, before they get any worse. If the crack is serious, you may need to get the help of a professional,......
  • Microsoft's Internet Explorer is Vulnerable to Attacks Hi Guyz, Just got the news. Microsoft Internet Explorer users, beware. There's a security flaw in all versions of the browser that leaves you wide open for attack. At least two million computers have already been infected. The exploit doesn't require users to click on links or download software from......
  • Problems with GrungeMag Theme were Solved Since switching to the GrungeMag theme about two weeks ago, I've been having a problem where the category menu is not working. The theme use Superfish style menu which is very awesome but not until today the category menu is working nicely in this blog. GrungeMag by Elegant Themes is......
en.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site