For those running PHP Live! on your web sites to facilitate real-time chat with your visitors and clients: they finally released a fix to address an exploit that allows remote visitors gain complete access to your server. We posted a warning couple weeks ago. Today there's a fix for it. From an email we just received from them this morning:


PHP Live! v3.2.1 IS RELEASED!
`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-
SECURITY ALERT: PLEASE UPGRADE YOUR PHP LIVE! TO THE LATEST VERSION AS SOME SERVERS WITH php.ini register_globals TURNED ON MAY BE SUBJECT TO POSSIBLE EXPLOITS. For those clients who run their PHP with register_globals OFF you should not be of any threat. Regardless, it is recommended all clients to download the latest v3.2.1.
`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-`-

Please stop by your client member area to download the latest version upgrade:
https://www.osicodes.com/web/Members/

If you do not see the latest copy in your client member area, please
email contact@osicodes.com with your login information or you may
speak to our online support during normal hours (10am-5:30pm).

Thank you,
OSI Codes Team

-----------------------------------------------------------------
OSI Codes Inc.

Phone (Toll Free): (866) 715-8639
Fax (Toll Free): (866) 637-8503

http://www.osicodes.com
http://www.phplivesupport.com