Full Disclosure: phpMyAdmin 3.x preg

phpMyAdmin 3.x preg_replace RCE POC

From: Mango <h () xxor se>
Date: Fri, 8 Jul 2011 22:27:21 +0200

I'm flooded with requests for a POC and many doubt that these
vulnerabilities are exploitable. And since this vulnerability is
rather technically interesting I believe many could learn from it.

http://ha.xxor.se/2011/07/phpmyadmin-3x-pregreplace-rce-poc.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

phpMyAdmin 3.x preg_replace RCE POC Mango (Jul 08)
- Re: phpMyAdmin 3.x preg_replace RCE POC nix (Jul 09)
  - Re: phpMyAdmin 3.x preg_replace RCE POC Ryan Sears (Jul 09)
    - Re: phpMyAdmin 3.x preg_replace RCE POC Mango (Jul 09)
  - Re: phpMyAdmin 3.x preg_replace RCE POC Mango (Jul 09)
    - Re: phpMyAdmin 3.x preg_replace RCE POC Tweedle Doh (Jul 09)
    - Message not available
    - Message not available
    - phpMyAdmin 3.x preg_replace RCE POC Mango (Jul 10)