PEAR XML_RPC XML_RPC_Value::serializeval() Invalid Parameter Path Disclosure

2005-07-07T03:17:58
ID OSVDB:17936
Type osvdb
Reporter OSVDB
Modified 2005-07-07T03:17:58

Description

Solution Description

Upgrade to version 1.3.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor URL: http://pear.php.net/ Vendor Specific News/Changelog Entry: http://pear.php.net/package/XML_RPC/download/1.3.2 Related OSVDB ID: 17935