• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

DotBr PHPInfo Environment Information Disclosure Vulnerability

DotBr may disclose sensitive information to remote attackers about the environment of the system hosting the software. This is due to the use of the PHP phpinfo() function in the 'foo.php3' script. This information may be helpful in mounting further attacks against the system.