Lucene search
HistoryJul 11, 2012 - 10:26 a.m.
CVE-2011-4305
moodle
denial of service
cve-2011-4305
nvd
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
6.3 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.5%
message/refresh.php in Moodle 1.9.x before 1.9.14 allows remote authenticated users to cause a denial of service (infinite request loop) via a URL that specifies a zero wait time for message refreshing.
Affected configurations
Node
moodlemoodleMatch1.9.1
ORmoodlemoodleMatch1.9.2
ORmoodlemoodleMatch1.9.3
ORmoodlemoodleMatch1.9.4
ORmoodlemoodleMatch1.9.5
ORmoodlemoodleMatch1.9.6
ORmoodlemoodleMatch1.9.7
ORmoodlemoodleMatch1.9.8
ORmoodlemoodleMatch1.9.9
ORmoodlemoodleMatch1.9.10
ORmoodlemoodleMatch1.9.11
ORmoodlemoodleMatch1.9.12
ORmoodlemoodleMatch1.9.13
References
Social References
More
Related
nvd
nvd
CVE-2011-4305
2012-07-11 10:26:11
cvelist
cvelist
CVE-2011-4305
2012-07-11 10:00:00
prion
prion
Cross site request forgery (csrf)
2012-07-11 10:26:00
ubuntucve
ubuntucve
CVE-2011-4305
2012-07-11 00:00:00
osv
osv
moodle - several
2011-11-07 00:00:00
nessus
nessus
Moodle 1.9.x < 1.9.14 Multiple Vulnerabilities
2015-04-20 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-2338-1)
2012-02-11 00:00:00
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
6.3 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.5%
Related for CVE-2011-4305