this post was submitted on 28 May 2024
2 points (100.0% liked)

PHP

33 readers
3 users here now

founded 2 years ago
 

A few months ago, I stumbled upon a 24 years old buffer overflow in the glibc, the base library for linux programs. Despite being reachable in multiple well-known libraries or executables, it proved rarely exploitable — while it didn't provide much leeway, it required hard-to-achieve preconditions. Looking for targets lead mainly to disappointment. On PHP however, the bug shone, and proved useful in exploiting its engine in two different ways.

no comments (yet)
sorted by: hot top controversial new old
there doesn't seem to be anything here