Thanks to the moderator for

Sofia22 — Tue, 30 Jun 2009 19:26:07 +0000

Thanks to the moderator for the link.
I still having some doubts but all depends of my practice.Thank you.
Have a nice day!!

It is found that defending

deb_ddas — Wed, 17 Jun 2009 10:09:47 +0000

It is found that defending buffer overflow attack in PHP web application is developer and version dependent. Can this be detected in network based attack detection i.e. identifying a malicious packet that cause buffer overflow.

I don't know my query and answer what I am wanting, how much valid. Pls. respond.

The there was one in an

Greg K — Mon, 07 Jul 2008 16:16:41 +0000

The there was one in an older version of 5, but it said to upgrade to 5.20 to fix it.

-Greg

Your link does not work - so

benf — Mon, 07 Jul 2008 15:47:28 +0000

Your link does not work - so it is just version? PHP5 does not have any of these flaws.

Very Good.

This areticle was released

Greg K — Mon, 07 Jul 2008 15:22:28 +0000

This areticle was released recently: http://www.frsirt.com/english/advisories/2008/1412

A little older, and says to fix upgrade to a newer version: http://secunia.com/advisories/22653/

Older article, but from http://www.linuxdevcenter.com/pub/a/linux/2002/12/30/insecurities.html

PHP's wordwrap() function has a buffer overflow that may be exploitable to execute arbitrary code with the permissions of the user running the script. The buffer overflow is reported to affect versions of PHP between 4.1.2 and 4.3.0. Scripts that do not contain the wordwrap() function call are not affected by this buffer overflow.

Affected users should upgrade to version 4.3.0 of PHP.

-Greg