CVE-2000-0967

Name of the Vulnerable Software and Affected Versions PHP versions 3 and 4

Description The issue allows remote attackers to execute arbitrary commands by triggering error messages that are improperly written to the error logs due to a format string vulnerability in the logging function. A remote attacker can send a format string to the php syslog function to execute arbitrary code on the Web server. Web servers that use PHP scripts are vulnerable if error logging is enabled in php.ini. Web servers may also be vulnerable if they have any PHP script that uses the "syslog" command, even if error logging is disabled.

Recommendations For PHP versions 3 and 4, consider disabling error logging in php.ini to minimize the risk of exploitation. Restrict access to the php syslog function to prevent remote attackers from sending malicious format strings. Avoid using the "syslog" command in PHP scripts until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.