The question for me is: can this bug be exploited remotely on web applications? I filter ids to only expect integers... is there an integer equivalent that will trigger this bug?
On Thu, Jan 6, 2011 at 9:57 AM, Julian Yap <julian_...@yahoo.com> wrote: > This bug leads to a PHP/server hang. > > Bug: > http://bugs.php.net/bug.php?id=53632 > > More discussion: > http://news.ycombinator.com/item?id=2066084 > http://www.theregister.co.uk/2011/01/04/weird_php_dos_vuln/ > > Looks to effect 32-bit systems running various 5.x versions of PHP. > > I was able to reproduce it. > > $ php -v > PHP 5.3.3 (cli) (built: Dec 14 2010 13:31:51) > Copyright (c) 1997-2010 The PHP Group > Zend Engine v2.3.0, Copyright (c) 1998-2010 Zend Technologies > $ php -r "print 2.2250738585072011e-308;" > > ... hang! > > _______________________________________________ > LUAU@lists.freesoftwarehawaii.org mailing list > > http://lists.freesoftwarehawaii.org/listinfo.cgi/luau-freesoftwarehawaii.org > _______________________________________________ LUAU@lists.freesoftwarehawaii.org mailing list http://lists.freesoftwarehawaii.org/listinfo.cgi/luau-freesoftwarehawaii.org
