Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: More PHP Phun SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
More PHP Phun
Jack wrote in to tell us that US-CERT posted the following advisory:

US-CERT is aware of a publicly reported vulnerability in PHP. PHP version 5.2.3 may be vulnerable to an integer overflow within the chunk_split() function.

More information can be found in the following PHP Security Blog.

US-CERT will provide additional information as it becomes available.

Thanks Jack.

HOD: Christopher Carboni

140 Posts
Jun 6th 2007

Sign Up for Free or Log In to start participating in the conversation!