Lucene search
Redhat.comRH:CVE-2016-1000232HistoryNov 07, 2019 - 4:12 a.m.
CVE-2016-1000232
2019-11-0704:12:52
redhat.com
access.redhat.com
10
0.006 Low
EPSS
Percentile
79.2%
A regular expression denial of service flaw was found in Tough-Cookie. An attacker able to make an application using Touch-Cookie to parse an HTTP header with many semicolons could cause the application to consume an excessive amount of CPU.
Related
openvas
openvas
Fedora Update for nodejs-tough-cookie FEDORA-2016-286a8ec5b0
2016-11-14 00:00:00
fedora
fedora
[SECURITY] Fedora 23 Update: nodejs-tough-cookie-2.3.1-1.fc23
2016-10-01 04:23:52
nodejs
nodejs
ReDoS via long string of semicolons
2016-07-22 19:43:01
osv
osv
CVE-2016-1000232
2018-09-05 17:29:00
ReDoS via long string of semicolons in tough-cookie
2018-10-10 18:57:02
nessus
nessus
Fedora 24 : nodejs-tough-cookie (2016-c0fd203d6e)
2016-08-09 00:00:00
Fedora 23 : nodejs-tough-cookie (2016-286a8ec5b0)
2016-10-06 00:00:00
RHEL 6 / 7 : rh-nodejs4-nodejs-tough-cookie (RHSA-2017:2912)
2024-04-27 00:00:00
cvelist
cvelist
CVE-2016-1000232
2018-09-05 17:00:00
nvd
nvd
CVE-2016-1000232
2018-09-05 17:29:00
cve
cve
CVE-2016-1000232
2018-09-05 17:29:00
ibm
ibm
veracode
veracode
Regular Expression Denial Of Service (ReDoS) Via Long String Of Semicolons
2019-01-15 09:13:59
prion
prion
Design/Logic Flaw
2018-09-05 17:29:00
github
github
ReDoS via long string of semicolons in tough-cookie
2018-10-10 18:57:02
redhat
redhat