PHP Hash Table Overwrite Arbitrary Code Execution Vulnerability

php-security.org — The session extension does not set the correct reference count value for the session variables, because it does not include the internal pointer from within the session globals. Due to this unsetting _SESSION and HTTP_SESSION_VARS will destroy the Hashtable containing the session data although the session extension still has an internal pointer to Apr 2, 2007 View in Crawl 4

Save
Bury

0 Comments

No comments yet

It's quiet in here... can you hear the echo?

No more comments on this story. Add your own!

or Join Digg!

Reply to this thread

Submitted by

John McKean 4 Followers

See all from hackerace

Top News in all Topics

15 Comical Umpire Punch-Outs (Videos)

What The Pushback On Obama’s Spending Claim Ignores

Romney campaign quietly scrubs all mentions of anti-labor adviser Peter Schaumber

New Discovery Shows Milky Way's Supermassive Black Hole Much More Violent in the Past

Steve Jobs Was an Awesome Flip-Flopper, Says Tim Cook

Blitzer to Trump: You Look 'Ridiculous' on This Birther Stuff

Least Popular Hotel Perks

Celebrate the Golden Gate’s 75th anniversary…with dubstep (Vid)

What Was the Jersey Devil?

What’s Up With Those Green Potato Chips You Sometimes Find?

©Digg