[MacPorts] #38452: PHP code disclosure vulnerability with apache2 and other web servers
MacPorts
noreply at macports.org
Wed Mar 20 13:57:58 PDT 2013
#38452: PHP code disclosure vulnerability with apache2 and other web servers
-------------------------+--------------------------------
Reporter: vikingjs@… | Owner: macports-tickets@…
Type: defect | Status: new
Priority: High | Milestone:
Component: ports | Version: 2.1.3
Resolution: | Keywords:
Port: apache2 |
-------------------------+--------------------------------
Comment (by vikingjs@…):
Note that the specific exploit I provided exposed php code, but the hole
is by no means limited to php. The exploit can be used to reveal any
server-side scripting. A port of mod_hfs_apple seems like the most
universal solution, if it's feasible.
--
Ticket URL: <https://trac.macports.org/ticket/38452#comment:8>
MacPorts <http://www.macports.org/>
Ports system for OS X
More information about the macports-tickets
mailing list