News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Builder.com.au:
PHP exploit code plants itself in GIF
June 22, 2007 @ 12:41:00

Builder.com.au has a new article today about the recent image issue - the PHP code embedded inside the GIF - that's come up on several sites.

The exploit code slipped through the site's defenses with the aid of a legitimate image at the beginning of the file, according to a blog post on the Sans Institutes's Internet Storm Center. [...] Malicious attackers planted PHP coded exploit script within an image file. PHP is often used as a programming language to create dynamic Web sites.

The article reports that, while this exploit hasn't happened much, the occurrences of it's use are growing with victims in a wide range of classifications - from small personal sites out to a certain major image hosting site. This same issue was discussed here on the PHPClasses.org website as well.

0 comments voice your opinion now!
gif exploit image script embed gif exploit image script embed


blog comments powered by Disqus

Similar Posts

SitePoint PHP Blog: PHP\'s \"doggie\" easter egg

Andreas Gohr's Blog: A Pirate Map with LibGD and Google Maps

Pierre-Alain Joye's Blog: imagerotate, little confusions in the manual (damned, I cannot say RTFM!)

DevShed: Using Yahoo! Web Services with PHP 5

Philip Norton's Blog: Creating A Thumbnail Of A Word Document With PHP And LiveDocx


Community Events





Don't see your event here?
Let us know!


introduction series interview version opinion symfony community laravel release language framework list configure api voicesoftheelephpant conference unittest podcast composer threedevsandamaybe

All content copyright, 2015 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework