RE: PHP Security Risk?

From: AndrewC (andrew_at_whirlow.plus.com)
Date: 12/02/04

  • Next message: Kevin Davis: "Re: Windows Messenger Pop-up spam" 
    To: "'Stephane Auger'" <stephaneauger@pre2post.com>, <security-basics@securityfocus.com>
Date: Thu, 2 Dec 2004 20:12:21 -0000

    Most PHP programs with file upload capabilities could allow a remote
    attacker to manipulate the program into opening arbitrary files on the
    server. A vulnerability in the way file uploads are handled could allow a
    remote attacker to gain read access to any file on the server that the user
    running the Web server can access (usually "nobody"). This could allow an
    attacker to view sensitive information, such as PHP code or database
    information. I am not sure of the specifics of PHP 5 but have a look at the
    link below for specifics on file upload.

    http://uk.php.net/manual/en/features.file-upload.php

    Good Luck

    Andrew Craig

    A+ N+ MCSE CCNA

  • Next message: Kevin Davis: "Re: Windows Messenger Pop-up spam"

    Relevant Pages

    • Re: Re basic file upload form
      ... // In PHP versions earlier than 4.1.0, ... print "Possible file upload attack! ... This is the script and form we can work on if you dont mind ... nothing appears in my tmp directory. ...
      (comp.lang.php)
    • Re: OpenFile Dialog in ASP.Net
      ... I will not any events from File upload control after selecting the file. ... assmue it is server side code. ... Try to test your ASP.NET app from other computer's browser (that ...
      (microsoft.public.dotnet.framework.windowsforms)
    • File Upload problem
      ... I'm trying to get a file upload to work with PHP. ... The file I'm attempting to upload is a 742kB pdf file, but this will have to work for files up to 50Mb of all types eventually. ... I'm using PHP with apache viewed on Mozilla, ... This message is intended solely for the use of the designated recipientand their appointed delegates, and may contain confidential information. ...
      (php.general)
    • Re: File upload from client application (non-form based upload)
      ... server that has been POST'ed from a client application. ... this is similar to handling a file upload from an HTML ... What I need is a Python equivalent of the the above PHP script. ...
      (comp.lang.python)
    • Re: Changing file name
      ... Not a solution again though Cor ... For the file upload it is very important what method you use on the Server ... There is no standard method for that. ...
      (microsoft.public.dotnet.languages.vb)
    • Quantcast