Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: More PHP Phun SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
More PHP Phun
Jack wrote in to tell us that US-CERT posted the following advisory:

US-CERT is aware of a publicly reported vulnerability in PHP. PHP version 5.2.3 may be vulnerable to an integer overflow within the chunk_split() function.

More information can be found in the following PHP Security Blog.

US-CERT will provide additional information as it becomes available.

Thanks Jack.

HOD: Christopher Carboni
Chris

140 Posts

Sign Up for Free or Log In to start participating in the conversation!