Thomas Gries wrote:
To whom it may concern:
PHP File-Upload $GLOBALS Overwrite Vulnerability
http://www.hardened-php.net/advisory_202005.79.html
$GLOBAL Overwrite and it's Consequences:
http://www.hardened-php.net/index.76.html
Hello,
Thanks for the notice about the exploit:
"overwriting the GLOBALS array when register_globals is turned on"
We dont use register_globals on WikiMedia website, i think most php
packages now ship with register_globals to off and anyone still using it
should recode their scripts :)
cheers,
--
Ashar Voultoiz - WP++++
http://en.wikipedia.org/wiki/User:Hashar
http://www.livejournal.com/community/wikitech/
IM: hashar(a)jabber.org ICQ: 15325080