Re: PHP filesystem attack vectors

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: PHP filesystem attack vectors
From: cxib@xxxxxxxxxxxxxxxxxx
Date: 10 Feb 2009 20:34:24 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

try combination with ..\

\ is accepted in many linux distr.

        
Some time ago, was possible bypass safe_mode.

like include "..\..\..\..\..\..\../../../../../etc/passwd"

We do not guarantee that it still works.

-- 
Best Regards,
------------------------
pub   1024D/A6986BD6 2008-08-22
uid                  Maksymilian Arciemowicz (cxib) <cxib@xxxxxxxxxxxxxxxxxx>
sub   4096g/0889FA9A 2008-08-22

http://securityreason.com
http://securityreason.com/key/Arciemowicz.Maksymilian.gpg

Prev by Date: Web Hacking Incidents update for Feb 10th
Next by Date: Nokia Phoenix Service Software 2008.04.007.32837 overflow POC
Previous by thread: Re: [Full-disclosure] PHP filesystem attack vectors
Next by thread: rooting your own phone: android security
Index(es):
- Date
- Thread