Home page logo

bugtraq logo Bugtraq mailing list archives

phpbuilder.com unrestricted page!
From: "npguy" <npguy () ysgnet com>
Date: Fri, 1 Aug 2003 15:04:19 +0545

recently, 01 security submission has discovered a serious problem with

---[ about phpbuilder.com ]---
phpbuilder.com is one of the premier php site. Thousand of developer share
and contribute their
articles on php.

the bug actually allows any user to launch DOS attack!
phpbuilder.com has not restricton in "page", making it possible to tie up
all the connection slots and consume a lot of CPU on the server.


change the page value!.



what about this?


and wait for result. there is not restricton in "page" variable, so u can
assign upto 2^32...r u mad?

---[about 01 security submission]---

01s.s  is a small group having experience as security specialists,
programmers and system administrators

  By Date           By Thread  

Current thread:
  • phpbuilder.com unrestricted page! npguy (Aug 01)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]