Un-Patched PHP-CGI remote code execution vulnerability can expose Source Codes

Un-Patched PHP-CGI remote code execution bug can expose Source Codes. A remote unauthenticated attacker could obtain sensitive information, cause a denial of service condition or execute arbitrary code with the privileges of the web server. The team that found the bug, known as Eindbazen. They said they had been waiting for several months for the PHP Group to release a patch for the vulnerability in order to publish information about the bug. The vulnerability can only be exploited if the HTTP server follows a fairly obscure part of the CGI spec.

Source: https://thehackernews.com/2012/05/un-patched-php-cgi-remote-code.html

Something Fresh

What to Know About The Jamaica Data Protection Act

St Vincent and the Grenadines embracing CariSECURE

Jamaica's Gov’t Looking to Finalize Data Protection Act Regulations

What People Reading

Feedback and data-driven updates to Googles disclosure policy

Mozilla Says Google's New Ad Tech - FLoC - Doesn't Protect User Privacy

Certificate Security in the Wild West

This Week's TV: Felicia Day Plays a Hacker with a Dungeons and Dragons Tattoo

RSA: Geolocation shows just how dead privacy is

Categories

Partners

Just add here your partners image or promo text