The Latest in IT Security

Unpatched PHP Installations Enable Cybercriminals to Exploit Old Vulnerability

21
Mar
2014

CVE-2012-1823 is a PHP arbitrary command execution vulnerability uncovered back in May 2012. Despite being discovered and patched a long time ago, cybercriminals have been successfully using it in their operations over the past months.

According to Imperva, an exploit for this vulnerability was made public in October 2013. Variations of the exploit have been used to attack web servers ever since.

The security company has identified as many as 30,000 attack campaigns …

Comments are closed.

Categories

FRIDAY, APRIL 28, 2017

Featured

Archives

Latest Comments

Social Networks