Re: twlc advisory: all versions of php nuke are vulnerable...

From: Jessica Smith (crystalsinger@mail.com)
Date: 02/20/03

  • Next message: xenophi1e: "Bypassing Personal Firewalls" 
    Date: 19 Feb 2003 23:15:12 -0000
From: Jessica Smith <crystalsinger@mail.com>
To: bugtraq@securityfocus.com
    ('binary' encoding is not supported, stored as-is) In-Reply-To: <000701c1452f$7f3fc670$8119fea9@supergate>

    >Systems Affected
    >all the versions ARE vulnerable
    >except '5.0 RC1' (i wonder why a released c. is ok while the final 5.2 is
    >bugged)

    <snip>

    >conclusions:
    >yet another bug of php nuke... this software is used by thousands of
    >people... (we run something based on it too) i hope that this time the
    >author will reply soon and will release a patch too!

    Just FYI, this was patched in PHPNuke 5.3, released way back in November
    2001 - perhaps SecurityFocus can update the attack description to reflect
    this so that people running later versions don't worry unnecessarily?

    Jessica

    Relevant Pages

    • Re: php extensions compile error - another compile bug?
      ... Re: php extensions compile error - another compile bug?: ... Is not triviality is a matter of perspective? ... AFFECTS: users of PHP ... and shared extensions to allow more flexibility and add new features. ...
      (freebsd-questions)
    • Re: [Full-Disclosure] How secure is PHP ?
      ... > quick look at security focus, searching the vuln db for PHP, nothing more ... Looking at the Official PHP Bug list I am ... The PROGRAMMER is always supposed to validate user supplied ... validate the input it feeds to file system functions it is programmer error. ...
      (Full-Disclosure)
    • Re: Undefined Index notices
      ... I didn't say that it was a bug.. ... These are the first 3 lines of the script that gets posted to.. ... there is nothing but good php there. ... working with a n00b.. ...
      (comp.lang.php)
    • Re: List Fails on some computers - www missing in url
      ... Yes it is - for any domain issued - denying that simple fact allows PHP ... Why is this a security bug, whereas a user being able to erase his ... session cookie at any time and start a new session ISN'T just as ... NS records pointing at the DNS hosting company the domain owner is ...
      (comp.lang.php)
    • Re: Using Doxygen with Angband
      ... that really we want them in the source files instead, ... Provides an example of a documentation style. ... BUG: Brief description of bug. ...
      (rec.games.roguelike.angband)