News Feed
Jobs Feed
Sections




News Archive
Secunia.com:
PHP Integer Overflow Vulnerability and Security Bypass
by Chris Cornutt June 01, 2007 @ 11:33:00

Secunia has released an advisory for PHP today related to an issue caused by an integer overflow that could allow for bypassing of security of an application.

A weakness and a vulnerability have been reported in PHP 5, where the vulnerability has unknown impact and the weakness can be exploited by malicious, local users to bypass certain security restrictions.

The issue is caused by issues with the chunk_split and realpath functions that can lead to a bypass of the open_basedir restriction on a server.

The issue is marked as "moderately critical" and it is suggested that users update to PHP 5.2.3 to correct the issue.

0 comments voice your opinion now!
integer overflow vulnerability security bypass openbasedir integer overflow vulnerability security bypass openbasedir


blog comments powered by Disqus

Similar Posts

Secunia.com: Mambo Unspecified Bypass Vulnerabilities

Pádraic Brady: PHP Security: Default Vulnerabilities, Security Omissions & Framing Programmer

Symfony Blog: symfony 1.0.5 released (security fix)

International PHP Magazine: Poll Question: What Do You Look for in Frameworks?

DevShed: File Security and Resources with PHP


 Community Events









Don't see your event here?
Let us know!

development opinion language database testing example unittest interview release code tool podcast object zendframework2 community framework introduction composer api phpunit

All content copyright, 2013 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework