2016
02.03

A Tale of openssl_seal(), PHP, and Apache2handle

Category: exploit / Tags: no tag / Add Comment

openssl_seal() is prone to use uninitialized memory that can be turned into a code execution. This document describes technical details of the journey to hijack apache2 requests. It is a very well written and thoroughly documented piece of research.

No Comment.

Add Your Comment

Your Comment

You must be logged in to post a comment.