There are no known win32 exploits for this particular bug. At some point we will have a Windows version of 4.1.2, but the Windows version always lags behind by a bit. You will just have to wait.
As far as I am concerned, an ISP running a Windows web server has much bigger problems than this particular tiny buffer overflow. -Rasmus On Mon, 4 Mar 2002, Fabio De Martin wrote: > Where can I find a documentation about the PHP exploit regarding file > uploads that excludes the WIN32 version from this problem? > On e-matters security advisory > (http://security.e-matters.de/advisories/012002.html), this information is > not clear and what I can understand is that all servers running PHP are > vulnerable without the patch. > But on PHP.NET website we can only find the patch for Linux!!! > > Please, I need an official report from PHP.net about this issue because my > ASP just disabled the file_uploads INI set while the patch for Win32 is > released. > > Regards, > > -- > Fabio De Martin > BASE64 Soluções em Tecnologia > Telefone: 011.5507.2426 > Celular: 011.9639.8990 > > The information in this e-mail and any attachments is confidential and is > intended for the addressee only. If you are not the intended recipient, > please delete this message and any attachments and advise the sender by > return e-mail. > > Visit our website: http://www.base64.com.br > > > > > -- > PHP Windows Mailing List (http://www.php.net/) > To unsubscribe, visit: http://www.php.net/unsub.php > -- PHP Windows Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
