Latest PHP Vulnerability Allows Hackers to Execute Remote Code on Windows Servers

Published:

spot_img

Critical PHP Vulnerability Allows Remote Code Execution on Windows Systems

A critical security flaw has been discovered in PHP that could lead to remote code execution, putting millions of websites at risk. The vulnerability, known as CVE-2024-4577, affects all versions of PHP installed on Windows operating systems.

DEVCORE security researcher Orange Tsai revealed that the flaw allows attackers to bypass previous security measures and execute arbitrary code on remote PHP servers. Despite responsible disclosure on May 7, 2024, exploitation attempts have already been detected within 24 hours of the public disclosure.

In response to the threat, PHP has released patches in versions 8.3.8, 8.2.20, and 8.1.29. However, DEVCORE warns that all XAMPP installations on Windows are vulnerable by default, especially if configured to use Traditional Chinese, Simplified Chinese, or Japanese locales.

To mitigate the risk, DEVCORE recommends moving away from PHP CGI and opting for more secure solutions like Mod-PHP, FastCGI, or PHP-FPM. Security researcher Aliz Hammond emphasized the urgency of applying the patches, as the exploit is relatively simple and has a high likelihood of being used on a large scale.

With the potential for widespread exploitation, website administrators are advised to take immediate action to protect their servers and data. Stay informed and follow us on Twitter and LinkedIn for more exclusive cybersecurity updates.

spot_img

Related articles

Recent articles

DHS Database Hacked, Adobe Accelerates Patch Cadence, Canada Disrupts Ransomware Operations

DHS Database Hacked, Adobe Accelerates Patch Cadence, Canada Disrupts Ransomware Operations Recent developments in cybersecurity highlight the ongoing challenges and responses within the digital landscape....

Airrived Secures Top Spot in AWS Cybersecurity Startup Accelerator, Backed by Industry Leaders AWS, CrowdStrike, CyberE71, and UAE Cyber Security Council

Airrived Secures Top Spot in AWS Cybersecurity Startup Accelerator, Backed by Industry Leaders AWS, CrowdStrike, CyberE71, and UAE Cyber Security Council DUBLIN, Calif. — Airrived,...

MRI Software Advances Data Readiness as Core of Gulf PropTech, Asserts ME Regional Director

MRI Software Advances Data Readiness as Core of Gulf PropTech, Asserts ME Regional Director The landscape of property management in the Middle East is undergoing...

Dark Web Intelligence Market Set to Surge to US$ 3.07 Billion by 2033, Driven by AI Innovations and North America’s 38% Dominance

Dark Web Intelligence Market Set to Surge to US$ 3.07 Billion by 2033, Driven by AI Innovations and North America's 38% Dominance The Global Dark...