CVE-2011-4885

2011-12-30T01:55:00
ID CVE-2011-4885
Type cve
Reporter cve@mitre.org
Modified 2018-01-09T02:29:00

Description

PHP before 5.3.9 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.