[mod-security-users] ModSecurity rules for PHP vulnerabilities
Brought to you by:
victorhora,
zimmerletw
Menu
▾
▴
[mod-security-users] ModSecurity rules for PHP vulnerabilities
|
From: Steve W. <ste...@gm...> - 2006-04-18 23:51:46
|
Hi folks, I'm wondering if anyon knows how to prevent some PHP 4.4.x/5.x vulnerabilities via mod_security until PHP group releases fixes for these. Here is more info on the vulnerabilities: PHP copy() function: http://securitytracker.com/alerts/2006/Apr/1015882.htm= l PHP tempname() Arg: http://securitytracker.com/alerts/2006/Apr/1015881.html PHP crashing Apache: http://securitytracker.com/alerts/2006/Apr/1015880.htm= l PHP phpinfo() validation: http://securitytracker.com/alerts/2006/Apr/1015879.html Thanks, SW |
