Multiple implementations denial-of-service via hash algorithm collision from ocert


Hash collsision based attack to key value store. If a webapp uses the given key as it is, i.e., it’s not including timestamp or some salt, it is vulerable this type of attack.

I like hacking as most of them spring from this kind of creativeness.


Leave a Reply

Your email address will not be published. Required fields are marked *