.
Community News: DreamStats "rootpath" File Inclusion Vulnerability Identified
As the International PHP Maagzine reports today there's been a file inclusion vulnerability found (from Secunia) in the DreamStats package: Secunia's latest advisory points out a vulnerability in DreamStats, which could be exploited by remote attackers to execute arbitrary commands. This issue is due to an input validation error in the index.php script that does not validate the rootpath parameter, which could be exploited by remote attackers to include malicious PHP scripts and execute arbitrary commands with the privileges of the web server.Those at risk are systems running versions 4.2 and prior and should update immediately. DreamStats is a package for displaying the statistics for Call of Duty related games on a website.
Read the full story
 

( back to top )
LEAR Web Design | LEAR Corporation | How LEAR Corp Works | Welcome To My Site | Learn PHP
South Florida Web Design | Broward Web Design | Miami-Dade Web Design | Palm Beach Web Design
Coral Springs Web Design | Deerfield Beach Web Design | Fort Lauderdale Web Design | Hollywood Web Design | Pompano Beach Web Design | Weston Web Design
Boca Raton Web Design | Boynton Beach Web Design | Delray Beach Web Design | Lantana Web Design | West Palm Beach Web Design
Aventura Web Design | Bal Harbour Web Design | North Miami Beach Web Design | North Miami Web Design | Miami Web Design | South Beach Miami Web Design
Atlanta | Boston Web Design | New York Web Design | Philadelphia Web Design | Pittsburgh
Los Angeles | San Diego | San Francisco | Sacramento | San Jose | Santa Clara | Mountain View | Sunnyvale
Appleton | Eau Claire | Green Bay | Milwaukee | Sturgeon Bay | Wausau | Denver

Copyright © 2003-2007 LEAR Web Design.
A South Florida Web Design Firm | SEO Consultant