Windows PHP Socket Hijack Toolset

June 6, 2008 – 5:48 AM

Due to a problem in the way Apache binds itself to port 80 on Windows machines allows the PHP environment running under Apache to gain access to the information being sent to port 80, which in turn can be leveraged to preform man-in-the-middle attacks.

This problem is exploited by the PHP tool linked below.

For more information about this issue see:
Abusing PHP Sockets for Fun and Profit

Source: SecuriTeam

You must be logged in to post a comment.