ID: 15736 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] Status: Open Bug Type: Unknown/Other Function Operating System: All UNIX PHP Version: 4.1.1 New Comment:
I am trying to get the source code, or at least an strace of the binary used for this exploit. Previous Comments: ------------------------------------------------------------------------ [2002-02-26 13:31:53] [EMAIL PROTECTED] There's a security exploit for php that gives you remote root by binding a rootshell to a high port. Exploits php before apache demotes its privledges. Looks like it uses the POST method. Buffer overflow. I don't have the program (binary) available as a friend of mine had limited access to it. BUt it affect ALL versions of php. ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/?id=15736&edit=1
