CVE-2011-5036 in Rackinformazioni

Riassunto

di MITRE

Rack before 1.1.3, 1.2.x before 1.2.5, and 1.3.x before 1.3.6 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

29/12/2011

Divulgazione

29/12/2011

Moderazione

accettato

Voce

VDB-59851

CPE

pronto

CWE

CWE-310 (confermato)

CVSS

5.0 (NVD)

EPSS

0.04016

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-5036
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-5036
CVE Details	https://www.cvedetails.com/cve/CVE-2011-5036/

◂ Precedente Visione D'ensemble Il prossimo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!