Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: More PHP Phun - SANS Internet Storm Center SANS ISC InfoSec Forums


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
More PHP Phun
Jack wrote in to tell us that US-CERT posted the following advisory:

US-CERT is aware of a publicly reported vulnerability in PHP. PHP version 5.2.3 may be vulnerable to an integer overflow within the chunk_split() function.

More information can be found in the following PHP Security Blog.

US-CERT will provide additional information as it becomes available.

Thanks Jack.

HOD: Christopher Carboni
Chris

140 Posts

Sign Up for Free or Log In to start participating in the conversation!