BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
PHP "exec", "system", "popen" problem Oct 19 2006 04:53AM
äÍÉÔÒÉÊ Borgir (dimmoborgir gmail com)
Vulnerable product:
-------------------
PHP ver. 4.4.3, 4.4.4, 5.0.4, 5.1.4, 5.1.6, 5.2.0RC5.
Other PHP versions are very likely to have this problem.

Description:
------------
The problem is in "exec", "system", "popen" (and similar) PHP functions.
In fact, PHP doesn't sanitize opened file descrip...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus