sourcecode Posted July 14, 2013 Report Share Posted July 14, 2013 PHP Hash Collision Denial Of Service Vulnerability Hash tables are a commonly used data structure in most programming languages. Web application servers or platforms commonly parse attacker-controlled POST form data into hash tables automatically, so that they can be accessed by application developers. If the language does not provide a randomized hash function or the application server does not recognize attacks using multi-collisions, an attacker can degenerate the hash table by sending lots of colliding keys. The algorithmic complexity of inserting n elements into the table then goes to O(n**2), making it possible to exhaust hours of CPU time using a single HTTP request. Affected PHP versions (up to 5.3.8). Quote Link to comment Share on other sites More sharing options...
ionutz15 Posted July 14, 2013 Report Share Posted July 14, 2013 Asa si ce ai rezolvat?Dai cu Netsparker in toate site-urile? Quote Link to comment Share on other sites More sharing options...
GoguMic Posted July 14, 2013 Report Share Posted July 14, 2013 Asa si ce ai rezolvat?Dai cu Netsparker in toate site-urile?NU, da cu acunetix, ca atata stie. Quote Link to comment Share on other sites More sharing options...