PHP Month of bugs status update #2

Topics

Tags

Favorite Links

Translate

Security Books

Archives

Recent entries...

20 years of CGISecurity: What appsec looked like in the year 2000

My experience coleading purple team

oAuth nightmares talk

Extensive IOS hacking guide released by Security Innovation

Presentation: Problems you'll face when building a software security program

Google's intentions are good, but implementation leave MORE users vulnerable to hacking than before

My experience with developer security training

A reminder that what you say at events may show up in unexpected places (like the news)

Malicious CA's continue to cause headaches

WASC Announcement: Static Analysis Technologies Evaluation Criteria Published

Twitter

Sponsored Ads

Sponsored Ads

The Web Security Mailing List

« Security's Symbiosis | Main | Article: ASP Session Cookies »

PHP Month of bugs status update #2

Here is another status update for the month of PHP Bugs. Here are the latest vulnerabilities.

* MOPB-11-2007:PHP WDDX Session Deserialization Information Leak Vulnerability
* MOPB-10-2007:PHP php_binary Session Deserialization Information Leak Vulnerability
* MOPB-09-2007:PHP wddx_deserialize() String Append Buffer Overflow Vulnerability
* MOPB-08-2007:PHP 4 phpinfo() XSS Vulnerability (Deja-vu)
* BONUS-07-2007:Zend Platform ini_modifier Local Root Vulnerability
* BONUS-06-2007:Zend Platform Insecure File Permission Local Root Vulnerability

Posted by Robert A. on 03/05/2007 in Vulns | Permalink | Reddit

Comments

You can follow this conversation by subscribing to the comment feed for this post.

All Comments are Moderated and will be delayed!