PHP Attacks....
Jesse Keating
jkeating at j2solutions.net
Wed Nov 9 20:38:42 UTC 2005
On Wed, 2005-11-09 at 13:27 -0700, Michal Jaegermann wrote:
> If I understand correctly that is really an XML_RPC vulnerability in
> pear libraries; so if you do not have such capability, or it is not
> turned on, then you are not vulnerable. Of course there are some
> applications which require that. Do I miss something?
I don't think you're missing anything, however a lot of php-crap-apps
use pear, so there is a good possibility that there are Legacy users
that need patching.
--
Jesse Keating RHCE (http://geek.j2solutions.net)
Fedora Legacy Team (http://www.fedoralegacy.org)
GPG Public Key
(http://geek.j2solutions.net/jkeating.j2solutions.pub)
Was I helpful? Let others know:
http://svcs.affero.net/rm.php?r=jkeating
More information about the fedora-legacy-list
mailing list