Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: PHP "exec", "system", "popen" (+small POC)
Oct 20 2006 09:08AM
Bernhard Mueller (research sec-consult com)
This is not a new problem (see http://www.securityfocus.com/bid/9302).
However, we also "discovered" this a few weeks ago and contacted Apache
and PHP about it. According to Stefan Esser (PHP) its due to Apache's
failure to open file descriptors with the close on exec flag. However,
[ more ]
Copyright 2010, SecurityFocus