Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: [Full-disclosure] Apache suEXEC privilege elevation / information disclosure
Aug 11 2013 08:15PM
Stefan Kanthak (stefan kanthak nexgo de)
"Reindl Harald" <h.reindl (at) thelounge (dot) net [email concealed]> wrote:
> Am 10.08.2013 16:52, schrieb Tobias Kreidl:
>> It is for this specific reason that utilities like suPHP can be used as a powerful tool to at least keep the
>> account user from shooting anyone but him/herself in the foot because of any configuration...
[ more ]
Copyright 2010, SecurityFocus