5 matches found
CVE-2018-20164
An issue was discovered in regex.yaml aka regexes.yaml in UA-Parser UAP-Core before 0.6.0. A Regular Expression Denial of Service ReDoS issue allows remote attackers to overload a server by setting the User-Agent header in an HTTPS request to a value containing a long digit string. The UAP-Core...
CVE-2018-20164
An issue was discovered in regex.yaml aka regexes.yaml in UA-Parser UAP-Core before 0.6.0. A Regular Expression Denial of Service ReDoS issue allows remote attackers to overload a server by setting the User-Agent header in an HTTPS request to a value containing a long digit string. The UAP-Core...
CVE-2018-20164
The CVE-2018-20164 entry describes a Regular Expression Denial of Service (ReDoS) in UA-Parser UAP-Core prior to 0.6.0. Affected component is the regex.yaml/regexes.yaml logic used to parse User-Agent strings; the vulnerability allows an attacker to overload a server by sending HTTP(S) requests w...
CVE-2018-20164
creationtimestamp| type| source ---|---|--- 2019-01-14 16:26:34+00:00| seen| MISP/5c3cb794-01e4-45c4-a734-16b90a021402...
UA-Parser Denial Of Service
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 X41 D-SEC GmbH Security Advisory: X41-2018-009 ReDoS Vulnerability in UA-Parser ================================ Severity Rating: Medium Confirmed Affected Versions: 2015-05-14 and newer, commit 6fd6c261274254bcbbacd77ef4b12534c7f9923d Confirmed...