Critical PHP Vulnerability Threatens Windows Servers ( www.bankinfosecurity.com )

Remote Code Execution Exploit Found; Patch Now AvailableA critical remote code execution vulnerability in PHP for Windows, affecting all releases since version 5.x, requires immediate action from server administrators. The flaw enables attackers to execute arbitrary code on remote PHP servers through an argument injection attack.

hemko ,

I hate the title of the article, it reads like it's windows server vulnerability instead of in Windows version of PHP.

I was already wondering is there some PHP under the hood on IIS, and if this would affect services like Exchange that rely on IIS...

As unrelated note, when can I stop worrying about tech I thankfully don't need to work with anymore

  • All
  • Subscribed
  • Moderated
  • Favorites
  • random
  • pulse_of_truth@infosec.pub
  • test
  • worldmews
  • mews
  • All magazines
    •