<<< Date Index >>>     <<< Thread Index >>>

Re: Re: PHP <= 5.2.5 Safe Mode Bypass



--- shsuff@xxxxxxxxxxx wrote:

> Nothing new.
> Already found: http://securityreason.com/achievement_securityalert/36/

I think it?s obvious that this one focuses on safe_mode restriction weakness 
and that one talks
about open_basedir! The only Similarity between these two advisories is the 
vulnerable tempnam
function

> 
> And this will not bypass safe_mode but open_basedir ...
>

Which one do you talk about , this or that?



      
____________________________________________________________________________________
Looking for last minute shopping deals?  
Find them fast with Yahoo! Search.  
http://tools.search.yahoo.com/newsearch/category.php?category=shopping