MHonArc 2.6.16 allows remote attackers to cause a denial of service (CPU consumption) via start tags that are placed within other start tags, as demonstrated by a <bo<bo<bo<bo<body>dy>dy>dy>dy> sequence, a different vulnerability than CVE-2010-4524.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | mhonarc | < 2.6.18-1 | mhonarc_2.6.18-1_all.deb |
Debian | 11 | all | mhonarc | < 2.6.18-1 | mhonarc_2.6.18-1_all.deb |
Debian | 10 | all | mhonarc | < 2.6.18-1 | mhonarc_2.6.18-1_all.deb |
Debian | 999 | all | mhonarc | < 2.6.18-1 | mhonarc_2.6.18-1_all.deb |
Debian | 13 | all | mhonarc | < 2.6.18-1 | mhonarc_2.6.18-1_all.deb |