Lucene search

FreeBSDA4D71E4C-7BF4-11E2-84CD-D43D7E0C7C02

HistoryFeb 20, 2013 - 12:00 a.m.

drupal7 -- Denial of service

2013-02-2000:00:00

vuxml.freebsd.org

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

57.3%

JSON

Drupal Security Team reports:

Drupal core’s Image module allows for the on-demand generation
of image derivatives. This capability can be abused by requesting
a large number of new derivatives which can fill up the server disk
space, and which can cause a very high CPU load. Either of these
effects may lead to the site becoming unavailable or unresponsive.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchdrupal7< 7.19UNKNOWN

OS	Version	Architecture	Package	Version	Filename
FreeBSD	any	noarch	drupal7	< 7.19	UNKNOWN

References

drupal.org/SA-CORE-2013-002

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

57.3%

JSON

Related for A4D71E4C-7BF4-11E2-84CD-D43D7E0C7C02