oss-sec mailing list archives

Re: Possible CVE request: php5: phpinfo() Type Confusion Information Leak Vulnerability

From: Loganaden Velvindron <loganaden () gmail com>
Date: Sun, 6 Jul 2014 08:33:48 +0400

Stefan Esser has written a blog post about a PoC that can be used
to disclose the SSL private key.

https://www.sektioneins.de/en/blog/14-07-04-phpinfo-infoleak.html

Kind regards,
//Logan
C-x-C-c


-- 
This message is strictly personal and the opinions expressed do not
represent those of my employers, either past or present.

Current thread:

Possible CVE request: php5: phpinfo() Type Confusion Information Leak Vulnerability Salvatore Bonaccorso (Jul 03)
- Re: Possible CVE request: php5: phpinfo() Type Confusion Information Leak Vulnerability Kurt Seifried (Jul 04)
- Re: Possible CVE request: php5: phpinfo() Type Confusion Information Leak Vulnerability cve-assign (Jul 06)
- <Possible follow-ups>
- Re: Possible CVE request: php5: phpinfo() Type Confusion Information Leak Vulnerability Loganaden Velvindron (Jul 06)