Urgent PHP Update Released

This message only applies to those who run and manage their own Apache and PHP Server.

PHP has released updates to fix the CGI-based vulnerability (CVE-2012-2311) made public last week. This vulnerability only “affects certain CGI-based setups, mod_php and php-fpm are not vulnerable to this attack”

The vulnerability would allow an attacker to view the source code for PHP pages potentially compromising account related and other sensitive code.

Download the Update PHP 5.4.3 and PHP 5.3.13

This entry was posted in Website Security. Bookmark the permalink. Both comments and trackbacks are currently closed.