Full Disclosure mailing list archives
Re: PHP html_decode_entity vulnerability
From: Tõnu Samuel <tonu () jes ee>
Date: Wed, 29 Mar 2006 16:20:46 +0300
On Wednesday 29 March 2006 08:51, Tõnu Samuel wrote:
Ok, this "critical" is my fault. Seeing memory dump of other user data
There is a one report of this exploit not working. This is vanilla PHP 5.1.2
compiled from source code on Feb 27-th.
Tõnu
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: Critical PHP bug - act ASAP if you are running web with sensitive data, (continued)
- Re: Critical PHP bug - act ASAP if you are running web with sensitive data Tõnu Samuel (Mar 28)
- Re: Critical PHP bug - act ASAP if you are runningweb with sensitive data FuntKlakow (Mar 28)
- Re: Critical PHP bug - act ASAP if you are running web with sensitive data Stefan Esser (Mar 28)
- Re: Critical PHP bug - act ASAP if you are running web with sensitive data Tõnu Samuel (Mar 28)
- Re: Critical PHP bug - act ASAP if you are running web with sensitive data Jasper Bryant-Greene (Mar 28)
- Re: Critical PHP bug - act ASAP if you are running web with sensitive data Slythers Bro (Mar 28)
- Re: Critical PHP bug - act ASAP if you are running web with sensitive data Slythers Bro (Mar 28)
- Re: Critical PHP bug - act ASAP if you are running web with sensitive data Jasper Bryant-Greene (Mar 28)
- Re: Critical PHP bug - act ASAP if you are running web with sensitive data Tõnu Samuel (Mar 28)
- Re: Critical PHP bug - act ASAP if you are running web with sensitive data Jasper Bryant-Greene (Mar 28)
- Re: PHP html_decode_entity vulnerability Tõnu Samuel (Mar 29)
- Re: Critical PHP bug - act ASAP if you are running web with sensitive data Tõnu Samuel (Mar 28)
- Re: Critical PHP bug - act ASAP if you are running web with sensitive data Tõnu Samuel (Mar 28)
- Re: Critical PHP bug - act ASAP if you are running web with sensitive data Tõnu Samuel (Mar 28)
- Re: Critical PHP bug - act ASAP if you are running web with sensitive data Jeff Rosowski (Mar 29)