{"id":4300,"date":"2004-12-23T20:44:36","date_gmt":"2004-12-23T19:44:36","guid":{"rendered":"https:\/\/destinationcyber.com\/?p=4300"},"modified":"2004-12-23T20:44:36","modified_gmt":"2004-12-23T19:44:36","slug":"un-bug-sur-php-menace-la-securite-des-bases-de-donnees","status":"publish","type":"post","link":"https:\/\/destinationcyber.com\/?p=4300","title":{"rendered":"Un bug sur PHP menace la s\u00e9curit\u00e9 des bases de donn\u00e9es"},"content":{"rendered":"<p class=\"post_excerpt\">Un bug s\u00e9rieux sur le langage de d\u00e9veloppement PHP menace les bases de donn\u00e9es si elles ne sont pas correctement s\u00e9curis\u00e9es\n<\/p>\n<p>La menace est s\u00e9rieuse, plusieurs administrateurs ont \u00e9t\u00e9 victimes de hackers qui ont rapidement su exploiter le d\u00e9faut r\u00e9v\u00e9l\u00e9 dans PHP, et annonc\u00e9 sur le forum phpBB.<\/p>\n<p>Le tr\u00e8s populaire langage de d\u00e9veloppement est en effet victime d&rsquo;un bug qui affecte les versions 4.3.9 et 5.0.2 de PHP. <\/p>\n<p>La faille ouverte exploite des erreurs dans les commandes de s\u00e9rialisation et de &lsquo;realpath&rsquo; afin de modifier les privil\u00e8ges, de contourner les restrictions de s\u00e9curit\u00e9 et de compromettre un syst\u00e8me vuln\u00e9rable.<\/p>\n<p>La solution conseill\u00e9e pour mettre fin \u00e0 la menace est de mettre \u00e0 jour les versions de PHP, sachant que cette mise \u00e0 jour permettra aussi de fixer plusieurs autres erreurs ou bugs d\u00e9couverts pr\u00e9c\u00e9demment.<\/p>\n<p>[source &#8211; Silicon.fr]&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Un bug s\u00e9rieux sur le langage de d\u00e9veloppement PHP menace les bases de donn\u00e9es si elles ne sont pas correctement s\u00e9curis\u00e9es <\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_citadela_custom_class":"","footnotes":""},"categories":[15],"tags":[],"class_list":["post-4300","post","type-post","status-publish","format-standard","hentry","category-securite"],"_links":{"self":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/posts\/4300","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4300"}],"version-history":[{"count":0,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/posts\/4300\/revisions"}],"wp:attachment":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4300"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4300"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4300"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}