Lucene search

K
nvd[email protected]NVD:CVE-2012-1150
HistoryOct 05, 2012 - 9:55 p.m.

CVE-2012-1150

2012-10-0521:55:01
CWE-310
web.nvd.nist.gov
1

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.007

Percentile

80.6%

Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.

Affected configurations

NVD
Node
pythonpythonRange2.6.7
OR
pythonpythonMatch0.9.0
OR
pythonpythonMatch0.9.1
OR
pythonpythonMatch1.2
OR
pythonpythonMatch1.3
OR
pythonpythonMatch1.5.2
OR
pythonpythonMatch1.6
OR
pythonpythonMatch1.6.1
OR
pythonpythonMatch2.0
OR
pythonpythonMatch2.0.1
OR
pythonpythonMatch2.1
OR
pythonpythonMatch2.1.1
OR
pythonpythonMatch2.1.2
OR
pythonpythonMatch2.1.3
OR
pythonpythonMatch2.2
OR
pythonpythonMatch2.2.1
OR
pythonpythonMatch2.2.2
OR
pythonpythonMatch2.2.3
OR
pythonpythonMatch2.3.1
OR
pythonpythonMatch2.3.2
OR
pythonpythonMatch2.3.3
OR
pythonpythonMatch2.3.4
OR
pythonpythonMatch2.3.5
OR
pythonpythonMatch2.3.7
OR
pythonpythonMatch2.4.1
OR
pythonpythonMatch2.4.2
OR
pythonpythonMatch2.4.3
OR
pythonpythonMatch2.4.4
OR
pythonpythonMatch2.4.6
OR
pythonpythonMatch2.5.1
OR
pythonpythonMatch2.5.2
OR
pythonpythonMatch2.5.3
OR
pythonpythonMatch2.5.4
OR
pythonpythonMatch2.5.6
OR
pythonpythonMatch2.5.150
OR
pythonpythonMatch2.6.1
OR
pythonpythonMatch2.6.2
OR
pythonpythonMatch2.6.3
OR
pythonpythonMatch2.6.4
OR
pythonpythonMatch2.6.5
OR
pythonpythonMatch2.6.6
OR
pythonpythonMatch2.6.2150
OR
pythonpythonMatch2.6.6150
Node
pythonpythonMatch2.7.1
OR
pythonpythonMatch2.7.1rc1
OR
pythonpythonMatch2.7.2rc1
OR
pythonpythonMatch2.7.1150
OR
pythonpythonMatch2.7.2150
Node
pythonpythonMatch3.0
OR
pythonpythonMatch3.0.1
OR
pythonpythonMatch3.1
OR
pythonpythonMatch3.1.1
OR
pythonpythonMatch3.1.2
OR
pythonpythonMatch3.1.3
OR
pythonpythonMatch3.1.4
Node
pythonpythonMatch3.2
OR
pythonpythonMatch3.2alpha
OR
pythonpythonMatch3.2.2150

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.007

Percentile

80.6%