module
Hashtable Collisions
| Disclosed | Created |
|---|---|
| Dec 28, 2011 | May 30, 2018 |
Disclosed
Dec 28, 2011
Created
May 30, 2018
Description
This module uses a denial-of-service (DoS) condition appearing in a variety of
programming languages. This vulnerability occurs when storing multiple values
in a hash table and all values have the same hash value. This can cause a web server
parsing the POST parameters issued with a request into a hash table to consume
hours of CPU with a single HTTP request.
Currently, only the hash functions for PHP and Java are implemented.
This module was tested with PHP + httpd, Tomcat, Glassfish and Geronimo.
It also generates a random payload to bypass some IDS signatures.
programming languages. This vulnerability occurs when storing multiple values
in a hash table and all values have the same hash value. This can cause a web server
parsing the POST parameters issued with a request into a hash table to consume
hours of CPU with a single HTTP request.
Currently, only the hash functions for PHP and Java are implemented.
This module was tested with PHP + httpd, Tomcat, Glassfish and Geronimo.
It also generates a random payload to bypass some IDS signatures.
Authors
Alexander Klink
Julian Waelde
Scott A. Crosby
Dan S. Wallach
Krzysztof Kotowicz
Christian Mehlmauer FireFart@gmail.com
Julian Waelde
Scott A. Crosby
Dan S. Wallach
Krzysztof Kotowicz
Christian Mehlmauer FireFart@gmail.com
References
Module Options
To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.