[Chameleon] Possible XML-RPC for PHP Remote Code Injection Vulnerability

William Bronsema wbronsema at dmsolutions.ca
Wed Jun 20 11:43:17 EDT 2007



Another vulnerability was found recently in the XML-RPC library.  See
http://www.securityfocus.com/bid/14088/info for more details.


This seems to only be a problem in older versions of PHP, but because
Chameleon makes use of this library we recommend that you run Chameleon with
PHP version 4.4.0 or higher.






William Bronsema

Senior Applications Specialist

DM Solutions Group Inc.





-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.maptools.org/pipermail/chameleon/attachments/20070620/cebcf096/attachment.html

More information about the Chameleon mailing list