From: Luis Arturo Aguilar
Sent: 07/01/2011 12:43:44 am
Subject: [PHP_MySQL] PHP Bug Alert
Due to the way the PHP runtime handles internal conversion of floating point
numbers, it is possible for a remote attacker to bring down a web application
simply by adding a specific parameter to a query string in their web browser
http://bugs.php.net/bug.php?id=53632
Zend has released a security hotfix to address this vulnerability, but I still
don't know about any other fixes.
[Non-text portions of this message have been removed]
------------------------------------
------------------------------------------
Come to the monthly meetings at UTD in Richardson, TX.
Second Tuesday of every month.Yahoo! Groups Links
<*> To visit your group on the web, go to:
http://groups.yahoo.com/group/PHP_MySQL_usergroup/
<*> Your email settings:
Individual Email | Traditional
<*> To change settings online go to:
http://groups.yahoo.com/group/PHP_MySQL_usergroup/join
(Yahoo! ID required)
<*> To change settings via email:
PHP_MySQL_usergroup-digest@yahoogroups.com
PHP_MySQL_usergroup-fullfeatured@yahoogroups.com
<*> To unsubscribe from this group, send an email to:
PHP_MySQL_usergroup-unsubscribe@yahoogroups.com
<*> Your use of Yahoo! Groups is subject to:
http://docs.yahoo.com/info/terms/
No comments:
Post a Comment