PHP :: Bug #32936 :: FTP URL relaying vulnerability
- ️Wed May 04 2005
| Bug #32936 | FTP URL relaying vulnerability | |||
|---|---|---|---|---|
| Submitted: | 2005-05-04 00:33 UTC | Modified: | 2005-05-07 02:12 UTC | |
| From: | herbert dot groot dot jebbink at gmail dot com | Assigned: | pollita (profile) | |
| Status: | Closed | Package: | FTP related | |
| PHP Version: | 5.0.4 | OS: | Linux | |
| Private report: | No | CVE-ID: | None |
Patches
Pull Requests
History
AllCommentsChangesGit/SVN commitsRelated reports
[2005-05-05 12:18 UTC] herbert dot groot dot jebbink at gmail dot com
"Interresting" was not the word that I used when I found out that my server was blacklisted as a spam machine and my emails where rejected by many mailservers. My bot that is written in PHP was trapped in the given exploit.
[2005-05-06 04:24 UTC] iliaa@php.net
This bug has been fixed in CVS. Snapshots of the sources are packaged every three hours; this change will be in the next snapshot. You can grab the snapshot at http://snaps.php.net/. Thank you for the report, and for helping us make PHP better.
[2005-05-07 00:28 UTC] iliaa@php.net
the patch was applied in 2 places, the HTTP redirect handling and FTP wrapper.