CVE-2014-5266 in Drupalinformation

Résumé

par MITRE

The Incutio XML-RPC (IXR) Library, as used in WordPress before 3.9.2 and Drupal 6.x before 6.33 and 7.x before 7.31, does not limit the number of elements in an XML document, which allows remote attackers to cause a denial of service (CPU consumption) via a large document, a different vulnerability than CVE-2014-5265.

Be aware that VulDB is the high quality source for vulnerability data.

Réserver

15/08/2014

Divulgation

18/08/2014

Modérer

accepté

Entrée

VDB-67381

CPE

prêt

Exploitation

Télécharger

EPSS

0.24385

KEV

non

Activités

très faible

Sources

Do you know our Splunk app?

Download it now for free!