6 matches found
CVE-2024-23826
spbusesite is the website of the Department of System Programming of St. Petersburg State University. Before 2024.01.29, when uploading an avatar image, an authenticated user may intentionally use a large Unicode filename which would lead to a server-side denial of service under Windows. This is...
CVE-2024-23826
creationtimestamp| type| source ---|---|--- 2024-01-29 17:31:59+00:00| seen| https://t.me/ctinow/175413 2024-02-08 19:22:16+00:00| seen| https://t.me/ctinow/181568 2024-02-21 17:36:41+00:00| seen| https://t.me/ctinow/189828...
CVE-2024-23826 Uploading an image with a specific filename causes a server-side DoS
spbusesite is the website of the Department of System Programming of St. Petersburg State University. Before 2024.01.29, when uploading an avatar image, an authenticated user may intentionally use a large Unicode filename which would lead to a server-side denial of service under Windows. This is...
CVE-2024-23826 Uploading an image with a specific filename causes a server-side DoS
spbusesite is the website of the Department of System Programming of St. Petersburg State University. Before 2024.01.29, when uploading an avatar image, an authenticated user may intentionally use a large Unicode filename which would lead to a server-side denial of service under Windows. This is...
CVE-2024-23826
The CVE-2024-23826 affects the spbu_se_site web application (St. Petersburg State University). Before 2024-01-29, authenticated users could upload an avatar image with a very large Unicode filename, triggering a server-side DoS on Windows due to unbounded filename length and costly Unicode normal...
CVE-2024-23826 Uploading an image with a specific filename causes a server-side DoS
spbusesite is the website of the Department of System Programming of St. Petersburg State University. Before 2024.01.29, when uploading an avatar image, an authenticated user may intentionally use a large Unicode filename which would lead to a server-side denial of service under Windows. This is...