>From that article: <snip> While PHP can be installed on other Web site software, the flaws only affect those Web servers running on top of the Linux or Solaris operating systems, according to an advisory released by German security and Internet software company e-Matters.
In the past, Microsoft's Internet Information Server has had a slew of problems with flaws in its components that allowed hackers and worms to break in. This time, the software appears not to be vulnerable, even if it's using PHP. The flaws, a collection of heap overflows and problematic boundary checks, could crash vulnerable servers or allow attackers full access to them, said the advisory. Different flaws affect various versions of PHP, from 3.10 to 4.1.1. Ullrich and the PHP Web site recommend that Linux and Solaris Web sites using PHP upgrade their software to the latest version, 4.1.2, which solves the problem. </snip> Nix www.aeontrek.com ======================== "Afan Pasalic" <[EMAIL PROTECTED]> wrote in message 001101c1c134$d29b5560$311f49d1@VAIO...">news:001101c1c134$d29b5560$311f49d1@VAIO...; "Flaws found in PHP scripting language" http://zdnet.com.com/2100-1105-847252.html Any comment? Afan -- PHP Windows Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
