PHP CGI Query String Parameter Processing Remote Code Execution
This vulnerability in PHP 5.3.12 and 5.4x before 5.4.2 when configured as a CGI script (php-cgi), a query which lacks and = sign will not be properly handled. So…
Computers are managed by people – and thus mistakes get made.
We are all busy – the department is smaller, as we lost Jim, he retired. John was fired in the last layoffs. But what happened – we soldiered on. We…
System admin goes to coffee shop
System admin Jim is sitting in a café getting his favorite cappuccino, while waiting for the drink to be prepared he flips open the notebook computer and goes to his…
Linux admin is busy with software installations
Our Linux admin is a pretty sharp guy, he is working on updating website technology (php version). We have to keep up with patches and new technical abilities. Unbeknownst to…
Small orgs still have to do the right thing
The problem with looking at this sophisticated target and Michaels attacks can make you think: That only happens to the big companies – my business does not provide a large…