Lucene search

[email protected]CVE-2006-1028

HistoryMar 07, 2006 - 12:02 a.m.

CVE-2006-1028

2006-03-0700:02:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve

2006

1028

joomla

1.0.7

feedcreator

denial of service

nvd

7.4 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.018 Low

EPSS

Percentile

88.1%

JSON

feedcreator.class.php (aka the syndication component) in Joomla! 1.0.7 allows remote attackers to cause a denial of service (stressed file cache) by creating many files via filenames in the feed parameter to index.php.

CPENameOperatorVersion
joomla:joomlajoomlaeq1.0.7

CPE	Name	Operator	Version
joomla:joomla	joomla	eq	1.0.7

References

secunia.com/advisories/19105

securityreason.com/securityalert/527

www.joomla.org/content/view/938/78/

www.osvdb.org/23817

www.securityfocus.com/archive/1/426538/100/0/threaded

7.4 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.018 Low

EPSS

Percentile

88.1%

JSON

Related for CVE-2006-1028

prion1