Near, phar, dangerous Unserialization wherever you are

Posted on 15th August 2018, by Sam Thomas


Our head of research Mr Sam Thomas is back in blighty after delivering his talk "It's a PHP Unserialization Vulnerability Jim, but Not as We Know It" at Blackhat USA 2018. Without any more attempts to work "phar" into the lyrics of the Celine Dion, I will simply drop the link to the whitepaper here:

See how Secarma can help

The technique can be exploited to achieve code execution in a variety of standard vulnerability scenarios.

Secarma Accreditations Crest Accredited IT Health Check Service ISO 9001 IS0 27001 Cyber Essentials Accreditation