search

harryoh / phurl

Automatically exported from code.google.com/p/phurl
0 stars 0 forks source link

Exploit found #99

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago 
In redirect.php you should replace

  header("Location: ".SITE_URL, true, 301);
  exit();

with

if (strtolower (SITE_URL) != "site_url")
  {
    header("Location: ".SITE_URL, true, 301);
  }
  exit(); 

otherwise it creates an endless loop.

I found some people doing that to my running system. Is that an exploit? Did 
the user gain root access by doing that?

Original issue reported on code.google.com by IntM...@googlemail.com on 27 Nov 2010 at 10:18

GoogleCodeExporter commented 9 years ago 
Id say its a bug, not an exploit. As you cant leverage anything from it. Maybe 
denial of service? but definitely not root

Original comment by itspa...@gmail.com on 1 Dec 2010 at 2:12

GoogleCodeExporter commented 9 years ago 
Most modern browsers should stop it doing anything with an endless loop, but 
still, we will fix this.

Original comment by he...@phurlproject.org on 28 Dec 2010 at 10:09