Where can I find a documentation about the PHP exploit regarding file uploads that excludes the WIN32 version from this problem? On e-matters security advisory (http://security.e-matters.de/advisories/012002.html), this information is not clear and what I can understand is that all servers running PHP are vulnerable without the patch. But on PHP.NET website we can only find the patch for Linux!!!
Please, I need an official report from PHP.net about this issue because my ASP just disabled the file_uploads INI set while the patch for Win32 is released. Regards, -- Fabio De Martin BASE64 Soluções em Tecnologia Telefone: 011.5507.2426 Celular: 011.9639.8990 The information in this e-mail and any attachments is confidential and is intended for the addressee only. If you are not the intended recipient, please delete this message and any attachments and advise the sender by return e-mail. Visit our website: http://www.base64.com.br -- PHP Windows Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
