wanting to earn a premium membership
Posted: March 27th, 2008, 6:45 pm
24-155-5-193.dyn.grandenetworks.net
80/tcp open http Apache httpd 2.2.4 ((Win32) PHP/5.2.5-dev)
81/tcp open hosts2-ns?
113/tcp closed auth
HTTP/1.1
Server Apache/2.2.4 (Win32) PHP/5.2.5-dev
PHP is prone to a 'safe_mode' and 'open_basedir' restriction-bypass vulnerability. Successful exploits could allow an attacker to access sensitive information or to write files in unauthorized locations.This vulnerability would be an issue in shared-hosting configurations where multiple users can create and execute arbitrary PHP script code; in such cases, the 'safe_mode' and 'open_basedir' restrictions are expected to isolate users from each other.PHP
Apache is prone to multiple denial-of-service vulnerabilities.An attacker with the ability to execute arbitrary server-side script-code can exploit these issues to stop arbitrary services on the affected computer in the context of the master webserver process; other attacks may also be possible.
Apache is prone to a path-information-disclosure vulnerability. Remote unauthorized attackers may be able to gain access to sensitive data.Information obtained may aid attackers in launching further attacks against an affected server.Apache 2.2.4 is reported to be vulnerable to this issue. Other versions may be affected as well
80/tcp open http Apache httpd 2.2.4 ((Win32) PHP/5.2.5-dev)
81/tcp open hosts2-ns?
113/tcp closed auth
HTTP/1.1
Server Apache/2.2.4 (Win32) PHP/5.2.5-dev
PHP is prone to a 'safe_mode' and 'open_basedir' restriction-bypass vulnerability. Successful exploits could allow an attacker to access sensitive information or to write files in unauthorized locations.This vulnerability would be an issue in shared-hosting configurations where multiple users can create and execute arbitrary PHP script code; in such cases, the 'safe_mode' and 'open_basedir' restrictions are expected to isolate users from each other.PHP
Apache is prone to multiple denial-of-service vulnerabilities.An attacker with the ability to execute arbitrary server-side script-code can exploit these issues to stop arbitrary services on the affected computer in the context of the master webserver process; other attacks may also be possible.
Apache is prone to a path-information-disclosure vulnerability. Remote unauthorized attackers may be able to gain access to sensitive data.Information obtained may aid attackers in launching further attacks against an affected server.Apache 2.2.4 is reported to be vulnerable to this issue. Other versions may be affected as well