Timeline for What are web attacks which users can run code on your servers?
Current License: CC BY-SA 3.0
3 events
| when toggle format | what | by | license | comment | |
|---|---|---|---|---|---|
| Nov 14, 2011 at 22:14 | comment | added | bstpierre | @acidzombie24: keep in mind that the interpreter is written in C... see for example CVE-2008-5557 "Heap-based buffer overflow in ext/mbstring/libmbfl/filters/mbfilter_htmlent.c". Or it could be a buffer overflow in the webserver itself: cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3747. | |
| Nov 14, 2011 at 19:27 | comment | added | user5575 | buffer overflow... is that even possible in a managed or an interpreted language!? | |
| Nov 14, 2011 at 17:57 | history | answered | woliveirajr | CC BY-SA 3.0 |