Re: [PHP-DEV] PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and 4.2.1

2002-07-22 Thread Martin Jansen
On Mon Jul 22, 2002 at 06:0054PM +0200, Melvyn Sopacua wrote: > I'm not sure I can upgrade all my installations, in due time, because of > backwards compatibility issues in some extensions. Only PHP 4.2.* is affected by the vulnerability. PHP 4.2.2 is similar to PHP 4.2.1 but contains just the pa

Re: [PHP-DEV] PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and 4.2.1

2002-07-22 Thread Melvyn Sopacua
Is there anything we could use with say mod_rewrite or snort, that could detect and avert a possible attack? I'm not sure I can upgrade all my installations, in due time, because of backwards compatibility issues in some extensions. Relating to that: how's the status on script-kiddie compatible