| Posted: 15 Nov 2006 13:21 | |
|
Registered User Currently Offline |
Posts: 2 Join Date: Sep 2006 |
|
How enovative WAMP is affected by recent PHP vulnerabilities?
Buffer overflow in PHP before 5.2.0 allows remote attackers to execute arbitrary code via crafted UTF-8 inputs to the (1) htmlentities or (2) htmlspecialchars functions. Unspecified vulnerabilities in PHP, probably before 5.2.0, allow local users to bypass open_basedir restrictions and perform unspecified actions via unspecified vectors involving the (1) chdir and (2) tempnam functions. Cross-site scripting (XSS) vulnerability in error.php in phpMyAdmin 2.6.4 through 2.9.0.2 allows remote attackers to inject arbitrary web script or HTML via UTF-7 or US-ASCII encoded characters, which are injected into an error message, as demonstrated by a request with a utf7 charset parameter accompanied by UTF-7 data. Thanks |
|
| Posted: 15 Nov 2006 23:47 | |
|
Administrator |
Posts: 125 Join Date: Feb 2005 |
|
1. Since >e-novative> WAMP is PHP, it has all the vunerabilities PHP has (just like any other WAMP system, as a matter of fact). One needs to carefully check any input that PHP receives - this is the PHP developer's responsibility, and it will always be with future versions of PHP. Yes, this is an issue, but we cannot make PHP better than it is - we just provide an installer for it. This is something every PHP user will have to live with.
2. As long as you (or other users) work as Administrator on Windows, each user can access everything anyway. The problems you mention are usually just issues on shared hosting servers where one regular user could gain access to other user's files. Since >e-novative> WAMP does not allow for shared hosting, there is usually just one user using the system (at a time), so there is no problem. 3. phpMyAdmin is not public in >e-novative> WAMP, thus an attacker would need to get access to your ControlPanel before being able to exploit an XSS vulnerability in phpMyAdmin. |
|