ATTENTION: Hotfix for OPN 2.2.3   All articles   Auf Facebook posten http://www.openphpnuke.com/system/article/index.php?opnparams=CntdOAI3CmdWMFU1

OPN DEV NewsStrictly speaking it's not a bug in OPN but a bug in PHP. This hotfix blocks intrusions via manipulated PHPSession variables.

Luckily an unpatched OPN 2.2.3 can withstand such attacks, but there may remain 'dead' processes on the webserver. The worst case at somehow weak webservers may be the whole webserver may be compromised.

We recommend to install this hotfix asap.

Find the hotfix here:

Zipfile
Tarfile

We guess other PHP scripts may be also concerned. So if you are using other PHP scripts and projects please watch there for security fixes and install them immediately.

Yours,
OPN-Team


Posted by manne on 2004-12-26 11:56:42  (42710 * reads) 

  All articles   Auf Facebook posten http://www.openphpnuke.com/system/article/index.php?opnparams=CntdOAI3CmdWMFU1

Comments

Threshold
The comments are owned by the poster. We are not responsible for their content.


 
Page took 0.07436 seconds to load