Vulnerability in PHP ?!?

From: BoneMachine (BoneMachineat_private)
Date: Mon May 13 2002 - 09:26:19 PDT

Next message: Andreas Hasenack: "Re: Vulnerability in PHP ?!?"

Previous message: frog frog: "Re : Security holes : Pseudo-Frame, PG, KvPoll, Phorum, BanMat"
Next in thread: Andreas Hasenack: "Re: Vulnerability in PHP ?!?"
Reply: Andreas Hasenack: "Re: Vulnerability in PHP ?!?"
Reply: Matthew Kauffman: "Re: Vulnerability in PHP ?!?"
Reply: Matthew Kauffman: "Re: Vulnerability in PHP ?!?"
Reply: lion: "Re: Vulnerability in PHP ?!?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I've posted this before but it was not processed.

--- 

I stumbled on some exploit code from TESO that is available at
packetstorm (http://packetstormsecurity.nl/filedesc/7350fun.html). The
code exists as a binary that is supposed to exploit
mod_php 4.0.x and crash at least 4.1.2

I am curious what hole is being exploited. I can't remember a buffer
overflow vulnerability being reported for mod_php 4.1.2
Anyone with ideas ?

TIA
Bone Machine

Next message: Andreas Hasenack: "Re: Vulnerability in PHP ?!?"
Previous message: frog frog: "Re : Security holes : Pseudo-Frame, PG, KvPoll, Phorum, BanMat"
Next in thread: Andreas Hasenack: "Re: Vulnerability in PHP ?!?"
Reply: Andreas Hasenack: "Re: Vulnerability in PHP ?!?"
Reply: Matthew Kauffman: "Re: Vulnerability in PHP ?!?"
Reply: Matthew Kauffman: "Re: Vulnerability in PHP ?!?"
Reply: lion: "Re: Vulnerability in PHP ?!?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon May 13 2002 - 12:44:34 PDT