You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
In the previous case, the + matched a, which should be an obvious name confusion. And here are other 2 cases for ur reference:
// ---- case 2$ee_crt = <<<'EOD'-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----EOD;
// the ee cert `DNS=|/`$name = "./";
// ---- case 3$ee_crt = <<<'EOD'-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----EOD;
// the ee cert `DNS=.+`$name = "./";
From the cases, it seems some characters, such as +, can act as wildcards in the phpseclib. If so, it should be a security issue. Could the developing team have a look at these cases? Many thanks.
I am looking forward to your reply.
Regards.
The text was updated successfully, but these errors were encountered:
Hi there,
I am writing to report a bug in the X.509 hostname verification process, which might result in name confusion attacks.
My testing environment is php7/php8. Here are some example codes.
In the previous case, the
+
matcheda
, which should be an obvious name confusion. And here are other 2 cases for ur reference:From the cases, it seems some characters, such as
+
, can act as wildcards in thephpseclib
. If so, it should be a security issue. Could the developing team have a look at these cases? Many thanks.I am looking forward to your reply.
Regards.
The text was updated successfully, but these errors were encountered: