lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Tue Apr 4 14:29:33 2006 From: john.r.bond at gmail.com (John Bond) Subject: Critical PHP bug - act ASAP if you are running web with sensitive data On 3/29/06, Jeff Rosowski <rosowskij@...ymp.gov> wrote: > It also doesn't affect all versions of PHP. on 5.0.5, it returns \0 > followed by however many Ss you put after it. And your right you wouldn't > trust user imput like that. > > _______________________________________________ I get this behaviour on php v5.0.4 on windows box
Powered by blists - more mailing lists