Please use this identifier to cite or link to this item:
Title: Fuzzing PHP
Authors: Li, Sebastian Jun Nan
Keywords: DRNTU::Engineering::Computer science and engineering
Issue Date: 2017
Abstract: We present the application of a state of the art data fuzzing program American Fuzzy Lop (AFL) to discover new vulnerabilities that could be present in PHP. We will walk through the discovery, submission and patching of a newly found bug in PHP. The bug was first discovered in PHP version 7.0.16 and 5.6.30 and subsequently patched in version 7.0.21. The bug is presented with CVE- 2017-11144, with the implication of a DOS attack.
Rights: Nanyang Technological University
Fulltext Permission: restricted
Fulltext Availability: With Fulltext
Appears in Collections:SCSE Student Reports (FYP/IA/PA/PI)

Files in This Item:
File Description SizeFormat 
  Restricted Access
1.56 MBAdobe PDFView/Open

Page view(s) 50

Updated on Jan 24, 2021

Download(s) 50

Updated on Jan 24, 2021

Google ScholarTM


Items in DR-NTU are protected by copyright, with all rights reserved, unless otherwise indicated.