Home > Bypassing, PHP > PHP 5.2.3 and 4.4.7

PHP 5.2.3 and 4.4.7

September 16th, 2008
Goto comments Leave a comment

Old but useful , I recorded this clip since the bug had been found about 1 week or little more , this hole exists on PHP 5.2.3 and PHP 4.4.7 , The current PHP stables are 5.2.6 and 4.4.9 …  although this bug was nearly discovered one year ago but many servers are available using this version of php . download URL :

http://sc0rpion.ir/tutorial-clips/bypassing-via-mysql-hole.rar
http://www.milw0rm.com/exploits/4392

Solution : Upgrade PHP to 5.2.4 or 4.4.8 , take a look at this link too :

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3997

In memories of Aria security and Sami.

Bypassing, PHP , , ,

  1. PaMPaM
    September 16th, 2008 at 10:45 | #1
    Reply | Quote

    roohesh shad :( :|

    mamnun babate clip yashar :X

  2. AshkAn
    September 16th, 2008 at 16:37 | #2
    Reply | Quote

    In memories of Aria security and sami .
    yashar badhuri 2-3 rooze too fekre sami hastam

  3. Stevensoft
    January 6th, 2009 at 18:35 | #3
    Reply | Quote

    :( it was a great tutorial

    i was trying to load data but i couldnt it shows not file….
    i tested it in linux and when i use for example: ‘/etc/passwd’ it shows me something like this file not found ‘\etc\passwd’ i think this is the problem ‘\’ because i tested it in windows and it works perfect.

    i dont know if you understand…. my english its terrible :(.

    Thaks.

  4. Sc0rpion
    January 7th, 2009 at 11:09 | #4
    Reply | Quote

    I don’t know what you’ve exactly done just watch the tutorial and follow it .

  1. No trackbacks yet.