[nickvd]

ALL PHP SERVERS MUST BE UPGRADED A.S.A.P...

The following is quoted from this security advisory i just saw on slashdot...

Url to /. story: http://developers.slashdot.org/devel...id=169&tid=172

Url to advisory: http://www.hardened-php.net/advisories/012004.txt

This is not something to be taken lightly... This very forum is susceptible to the attacks that are currently happening throuout the globe. If you run php, with a version less than 4.3.10 or 5.0.3 you ARE VULNERABLE...

Quote:

...clipped...

Additionally to bug 06 the previous version of the variable
unserializer allowed setting references to already freed entries in
the variable hash. A skilled attacker can exploit this to create
an universal string that will pass execution to an arbitrary
memory address when it is passed to unserialize(). For AMD64 systems
it was even possible to developed a string that directly passes
execution to shellcode contained in the string itself.

It is necessary to understand that these strings can exploit a
bunch of popular PHP applications remotely because they pass f.e.
cookie content to unserialize().

Examples of vulnerable scripts:

- phpBB2
- Invision Board
- vBulletin
- Woltlab Burning Board 2.x
- Serendipity Weblog
- phpAds(New)
- ...