From: zor at mysword dot org Operating system: Linux Mandrake 10.0 PHP version: 5.0.0 PHP Bug Type: Unknown/Other Function Bug description: PHP memory_limit remote vulnerability(includes 5.0.0)
Description: ------------ Found this site and I thought php people should know about it: http://security.e-matters.de/advisories/112004.html Have a nice day gentlemans. Reproduce code: --------------- <nocode> Expected result: ---------------- <noresult> Actual result: -------------- <noresult> -- Edit bug report at http://bugs.php.net/?id=29241&edit=1 -- Try a CVS snapshot (php4): http://bugs.php.net/fix.php?id=29241&r=trysnapshot4 Try a CVS snapshot (php5): http://bugs.php.net/fix.php?id=29241&r=trysnapshot5 Fixed in CVS: http://bugs.php.net/fix.php?id=29241&r=fixedcvs Fixed in release: http://bugs.php.net/fix.php?id=29241&r=alreadyfixed Need backtrace: http://bugs.php.net/fix.php?id=29241&r=needtrace Need Reproduce Script: http://bugs.php.net/fix.php?id=29241&r=needscript Try newer version: http://bugs.php.net/fix.php?id=29241&r=oldversion Not developer issue: http://bugs.php.net/fix.php?id=29241&r=support Expected behavior: http://bugs.php.net/fix.php?id=29241&r=notwrong Not enough info: http://bugs.php.net/fix.php?id=29241&r=notenoughinfo Submitted twice: http://bugs.php.net/fix.php?id=29241&r=submittedtwice register_globals: http://bugs.php.net/fix.php?id=29241&r=globals PHP 3 support discontinued: http://bugs.php.net/fix.php?id=29241&r=php3 Daylight Savings: http://bugs.php.net/fix.php?id=29241&r=dst IIS Stability: http://bugs.php.net/fix.php?id=29241&r=isapi Install GNU Sed: http://bugs.php.net/fix.php?id=29241&r=gnused Floating point limitations: http://bugs.php.net/fix.php?id=29241&r=float
