|
|
Family: CGI abuses --> Category: attack
PHP Live! Remote Configuration File Include Vulnerability Scan
Vulnerability Scan Summary
Checks for a flaw in PHP Live! < 2.8.2
Detailed Explanation for this Vulnerability Test
The remote host is running PHP Live! a live support system for web sites.
The remote version of this software contains an unspecifiedflaw which
may allow a possible hacker to include a configuration file hosted on a third
party server.
A possible hacker may exploit this flaw to execute arbitrary PHP code on the remote
host.
See also : http://archives.neohapsis.com/archives/apps/freshmeat/2004-11/0022.html
Solution : Upgrade to PHP Live! 2.8.2
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
