[Chameleon] Possible XML-RPC for PHP Remote Code Injection
Vulnerability
William Bronsema
wbronsema at dmsolutions.ca
Wed Jun 20 11:43:17 EDT 2007
Everyone,
Another vulnerability was found recently in the XML-RPC library. See
http://www.securityfocus.com/bid/14088/info for more details.
This seems to only be a problem in older versions of PHP, but because
Chameleon makes use of this library we recommend that you run Chameleon with
PHP version 4.4.0 or higher.
Cheers,
Bill
William Bronsema
Senior Applications Specialist
DM Solutions Group Inc.
___________________________________
http://www.dmsolutions.ca
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.maptools.org/pipermail/chameleon/attachments/20070620/cebcf096/attachment.html
More information about the Chameleon
mailing list