2 matches found
Facebook HHVM Denial of Service Vulnerability
Facebook HHVM aka HipHop Virtual Machine is a virtual machine from Facebook that significantly improves the performance of loading dynamic pages in PHP. A security vulnerability exists in the call to the 'scryptenc' function in Facebook HHVM. The vulnerability can be exploited by an attacker with...
UBUNTU-CVE-2019-3570
Call to the scryptenc function in HHVM can lead to heap corruption by using specifically crafted parameters N, r and p. This happens if the parameters are configurable by an attacker for instance by providing the output of scryptenc in a context where Hack/PHP code would attempt to verify it by...