[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: PCI vulnerability scan - PHP4 on Sarge

* William Chipman:

> We had a scan of our systems for PCI compliance and received warnings
> about PHP 4.4.3-10-22.
> I checked the archives and found that the following CVE reports were
> not covered by the comments
> leading up to 4.4.3-10-22:

> 2005-2491

Do you mean CVE-2005-2491?  This should have been fixed by a PCRE

What's your audit methodology?

Reply to: