|
Family: Slackware Local Security Checks --> Category: infos
SSA-2005-192-01 PHP Vulnerability Scan
Vulnerability Scan Summary SSA-2005-192-01 PHP
Detailed Explanation for this Vulnerability Test
New PHP packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1,
and -current to fix a security issue with the PEAR XML_RPC class that
allows a remote attacker to run arbitrary PHP code. Sites that make
use of this PHP library should upgrade to the new PHP package right
away, or may instead upgrade the XML_RPC PEAR class with the following
command:
pear upgrade XML_RPC
More details about this issue may be found in the Common
Vulnerabilities and Exposures (CVE) database:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1921
Click HERE for more information and discussions on this network vulnerability scan.
|