[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Simple Machines Forum <=1.1RC2 unset() vulnerabilities

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Simple Machines Forum <=1.1RC2 unset() vulnerabilities
From: rgod@xxxxxxxxxxxxx
Date: 22 Aug 2006 17:15:47 -0000

---------Simple Machines Forum <=1.1RC2 unset() vulnerabilities-----------------
--------------------------------------------------------------------------------

software site: http://www.simplemachines.org/

the recently discovered Zend_Hash_Del_Key_Or_Index PHP vulnerability allows
users to include arbitrary files from local resources (on Windows boxes)
and to lock topics, poc for both:

http://retrogod.altervista.org/smf_11rc2_local_incl.html
http://retrogod.altervista.org/smf_11rc2_lock.html

an interesting reading:
http://www.hardened-php.net/hphp/zend_hash_del_key_or_index_vulnerability.html

SMF team released 1.0.8 and 1.1.rc3 versions to patch theese issues
--------------------------------------------------------------------------------
rgod

site: http://retrogod.altervista.org
mail: rgod at autistici.org
--------------------------------------------------------------------------------

Prev by Date: Major updates in PowerPoint FAQ document - not a 0-day issue
Next by Date: Re: Joomla x-shop <= 1.7 Remote File Include Vulnerability
Previous by thread: Major updates in PowerPoint FAQ document - not a 0-day issue
Next by thread: unauthorized VNC access in AK-Systems Windows Terminals
Index(es):
- Date
- Thread