[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-Disclosure] How secure is PHP ?
- To: Ron DuFresne <dufresne@xxxxxxxxxxxxx>, "Gary E. Miller" <gem@xxxxxxxxxx>
- Subject: Re: [Full-Disclosure] How secure is PHP ?
- From: Stefan Esser <s.esser@xxxxxxxxxxxx>
- Date: Thu, 4 Nov 2004 13:39:23 +0100
Nice try Ron,
while PHP indeed had lots of advisories in the past, your
list is FUD.
Many of the listed vulnerabilities are within non standard
or even EXPERIMENTAL extensions, are theoretical vulnerabilities,
are only exploitable if precondition a,b,c,d,e,f,g is fullfilled
or are only affecting the windows platform.
Stefan
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html