From: [EMAIL PROTECTED] Operating system: Linux PHP version: 4.0.4pl1 PHP Bug Type: *General Issues Bug description: PHP exploit I'm running Redhat 7.1 Linux xxxxxxxxxxxx 2.4.3-12 #1 Fri Jun 8 15:05:56 EDT 2001 i686 unknown with apache apache-1.3.19-5 funcion system() gives apache rights to every user even in /~username requests... it is easy to exploit the whole site with simple script http://www.gimpster.com/php/phpshell/index.php what should I do againt.?? -- Edit bug report at: http://bugs.php.net/?id=13406&edit=1 -- PHP Development Mailing List <http://www.php.net/> To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]
