Menu

#101 DOS: phpsysinfo recursive loop

closed-fixed
nobody
None
5
2004-04-29
2003-01-18
No

the following line in index.php (~line 90) makes it
possible to crash a single apache process. It could
easily be used to DOS a server. Simply calling
index.php?lng=../../index creates a run-a-way recursive
loop, creating a huge load and finally crashing the
apache process.

require('./includes/lang/' . $lng . '.php');

I'm not a real PHP programmer but I tried to find a
fix, I came up with the following, see the attached
file. I have no idea if it is 100% secure but at least
it works for me :)

mzzl
Wolter

Discussion

  • Wolter Kamphuis

    Wolter Kamphuis - 2003-01-18

    The fix

     
  • Anonymous

    Anonymous - 2003-01-19

    Logged In: YES
    user_id=565

    Added to CVS

     
  • Anonymous

    Anonymous - 2004-04-29
    • status: open --> closed-fixed