Lucene search
PRIOn knowledge basePRION:CVE-2011-5037HistoryDec 30, 2011 - 1:55 a.m.
Design/Logic Flaw
2011-12-3001:55:00
PRIOn knowledge base
www.prio-n.com
3
7 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.005 Low
EPSS
Percentile
74.9%
Google V8 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters, as demonstrated by attacks against Node.js.
Related
cve
cve
CVE-2011-5037
2011-12-30 01:55:00
ubuntucve
ubuntucve
CVE-2011-5037
2011-12-30 00:00:00
openvas
openvas
FreeBSD Ports: jruby
2012-02-12 00:00:00
FreeBSD Ports: jruby
2012-02-12 00:00:00
freebsd
freebsd
Multiple implementations -- DoS via hash algorithm collision
2011-12-28 00:00:00
nessus
nessus
7 High
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.005 Low
EPSS
Percentile
74.9%
Related for PRION:CVE-2011-5037