ID: 25793 User updated by: valyala at tut dot by Reported By: valyala at tut dot by Status: Open Bug Type: Reproducible crash -Operating System: Win2k sp3 +Operating System: Win2k sp3, WinXP, Win2003 -PHP Version: 4.3.3 +PHP Version: 4.3.3 and older New Comment:
2 Stephen at ediassociates dot com: Is your webserver running under windows NT ? If yes, try this link to reproduce the bug: http://localhost/login/link.php?32432[] I think, this bug is useful for dos-attacks ;) Previous Comments: ------------------------------------------------------------------------ [2003-10-08 14:32:00] Stephen at ediassociates dot com Close, mine doesn't crash the server; however, it doesn't return any values. My link is "http://localhost/login/link.php?SesId=67394710"; but when I place the following code in link.php I get "The sessionId is" and nothing else. <?php print("The sessionId is $_GET[SesID]"); ?> ------------------------------------------------------------------------ [2003-10-08 09:34:18] valyala at tut dot by Description: ------------ this query strings crashes PHP under Windows: 1[] 437378[index] 232[index]=value&something_else the query string must begins with any decimal number, following braces with optional index string. Sorry for my English :) Reproduce code: --------------- GET /any_php_script.php?1[] HTTP/1.1 Expected result: ---------------- If my script looks like this: <?php print_r($_GET); ?> I expected: Array ( [1] => Array ( [0] => ) ) Actual result: -------------- No response headers received because request failed : ERROR_INTERNET_CONNECTION_RESET And windows shows error message: "Apache.exe has generated errors and will be closed by Windows. You will need to restart the program" ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/?id=25793&edit=1
