[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-security] php and raq2

Subject: RE: [cobalt-security] php and raq2
From: "Chris Weiss" <chris@xxxxxxxxxxxxxx>
Date: Thu, 21 Sep 2000 15:00:55 -0400

The hole is in PHP.

Go to www.php.org and you will see how to set PHP in safe mode to prevent this.

Chris

-----Original Message-----
From: cobalt-security-admin@xxxxxxxxxxxxxxx [mailto:cobalt-security-admin@xxxxxxxxxxxxxxx]On Behalf Of Soler Bosch, Oriol
Sent: Thursday, September 21, 2000 4:29 AM
To: cobalt-security@xxxxxxxxxxxxxxx
Subject: [cobalt-security] php and raq2

good morning :

if you got php installed from cobalt in your raq2 be aware of this :

<html>
<head>
<title></title>
</head>
<body>

<center>
<?php
echo '<pre>';
echo `ls -al /home/`;
echo '</pre>';
?>
<p><hr WIDTH="80%">

i believe cobalt raq has a important hole, can someone help me out to fix this ?

Oriol Soler
Dpto. Técnico Conecta 97
oriol@xxxxxxxxxxxxx

Follow-Ups:
- RE: [cobalt-security] php and raq2
  - From: Gossi The Dog

References:
- [cobalt-security] php and raq2
  - From: Soler Bosch, Oriol

Prev by Date: [cobalt-security] php and raq2
Next by Date: [cobalt-security] Spam from this list
Previous by thread: [cobalt-security] php and raq2
Next by thread: RE: [cobalt-security] php and raq2

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index