Basically, you can fix the problem by removing (or hiding, by placing another module with the same name before it in the module path) the Gmp module. But you'd have to compile Pike without bignum support, otherwise stuff like 17->pow(10000000) would still work (or not work, depending on your perspective ;).
/ Marcus Comstedt (ACROSS) (Hail Ilpalazzo!)
Previous text:
2003-03-21 23:21: Subject: sTeam DoS vulnerability (still is: Do we have a floatingpoint bug?)
for sTeam this problem is rather serious. since we allow users to execute pike code (we can, because we have a security system) crashbugs like these will allow any prankster to kill our servers.
it's less of a problem for caudium or roxen because of the lack of a security system only trusted users should be executing pike code anyways.
ludger, tom, is there any way we can catch people trying to crash sTeam this way?
greetings, martin.
/ Brevbäraren