I have heard that PHP is susceptible to buffer overflow attacks - is this true or is it due to unsecure php versions?
Would the latest PHP 5 version be susceptible to this type of attack?
- aPaddedCell © Copyright 2006-2008 InterMedia. Site and all articles (unless otherwise specified) licensed under a Creative Commons License. Icons based upon the Tango icon set by various artists.
- All trademarks and copyrights on this page are owned by their respective owners. Forum posts are owned by the individual posters.
Greg K posted this at 15:22 — 7th July 2008.
He has: 1,911 posts
Joined: Nov 2003
This areticle was released recently: http://www.frsirt.com/english/advisories/2008/1412
A little older, and says to fix upgrade to a newer version: http://secunia.com/advisories/22653/
Older article, but from http://www.linuxdevcenter.com/pub/a/linux/2002/12/30/insecurities.html
-Greg
[This space intentionally left blank]
Cool Geek Supplies: www.ThinkGeek.com
benf posted this at 15:47 — 7th July 2008.
They have: 393 posts
Joined: Feb 2005
Your link does not work - so it is just version? PHP5 does not have any of these flaws.
Very Good.
Greg K posted this at 16:16 — 7th July 2008.
He has: 1,911 posts
Joined: Nov 2003
The there was one in an older version of 5, but it said to upgrade to 5.20 to fix it.
-Greg
deb_ddas posted this at 10:09 — 17th June 2009.
They have: 1 posts
Joined: Jun 2009
It is found that defending buffer overflow attack in PHP web application is developer and version dependent. Can this be detected in network based attack detection i.e. identifying a malicious packet that cause buffer overflow.
I don't know my query and answer what I am wanting, how much valid. Pls. respond.
Sofia22 posted this at 19:26 — 30th June 2009.
They have: 3 posts
Joined: Jun 2009
Thanks to the moderator for the link.
I still having some doubts but all depends of my practice.Thank you.
Have a nice day!!