Lucene search
+L

58 matches found

NVD
NVD
added 2013/09/25 10:31 a.m.29 views

CVE-2013-5750

The login form in the FriendsOfSymfony FOSUserBundle bundle before 1.3.3 for Symfony allows remote attackers to cause a denial of service CPU consumption via a long password that triggers an expensive hash computation, as demonstrated by a PBKDF2 computation...

5CVSS6.5AI score0.01232EPSS
Exploits0References1
Prion
Prion
added 2013/09/25 10:31 a.m.18 views

Design/Logic Flaw

The login form in the FriendsOfSymfony FOSUserBundle bundle before 1.3.3 for Symfony allows remote attackers to cause a denial of service CPU consumption via a long password that triggers an expensive hash computation, as demonstrated by a PBKDF2 computation...

5CVSS6.9AI score0.01232EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2013/09/25 10:0 a.m.32 views

CVE-2013-5750

The login form in the FriendsOfSymfony FOSUserBundle bundle before 1.3.3 for Symfony allows remote attackers to cause a denial of service CPU consumption via a long password that triggers an expensive hash computation, as demonstrated by a PBKDF2 computation...

6.4AI score0.01232EPSS
Exploits0References1
NVD
NVD
added 2012/11/28 1:3 p.m.35 views

CVE-2012-5370

JRuby computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application that maintains a hash table, as demonstrated by a universal...

5CVSS6.1AI score0.02249EPSS
Exploits0References6
Prion
Prion
added 2012/11/28 1:3 p.m.28 views

Design/Logic Flaw

JRuby computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application that maintains a hash table, as demonstrated by a universal...

5CVSS6.5AI score0.0436EPSS
Exploits1References6
Prion
Prion
added 2012/11/28 1:3 p.m.24 views

Design/Logic Flaw

Rubinius computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application that maintains a hash table, as demonstrated by a universal...

5CVSS6.9AI score0.01941EPSS
Exploits1References5
Cvelist
Cvelist
added 2012/11/28 11:0 a.m.43 views

CVE-2012-5370

JRuby computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application that maintains a hash table, as demonstrated by a universal...

6AI score0.02249EPSS
Exploits0References6
Cvelist
Cvelist
added 2012/11/28 11:0 a.m.40 views

CVE-2012-2739

Oracle Java SE before 7 Update 6, and OpenJDK 7 before 7u6 build 12 and 8 before build 39, computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an...

8.5AI score0.0317EPSS
Exploits1References8
Prion
Prion
added 2012/10/05 9:55 p.m.28 views

Code injection

Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application...

5CVSS6.5AI score0.0506EPSS
Exploits3References18Affected Software1
Debian CVE
Debian CVE
added 2012/10/05 9:0 p.m.27 views

CVE-2012-1150

Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application...

5CVSS8.2AI score0.0506EPSS
Exploits3
OpenVAS
OpenVAS
added 2012/08/09 12:0 a.m.28 views

RedHat Update for openldap RHSA-2012:1151-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

4.3CVSS8.8AI score0.04114EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2012/02/22 12:0 a.m.26 views

CVE-2012-0841

libxml2 before 2.8.0 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted XML data...

5CVSS7.2AI score0.0326EPSS
Exploits0References3
Amazon
Amazon
added 2012/01/19 12:0 a.m.32 views

Important: ruby

Issue Overview: Ruby aka CRuby before 1.8.7-p357 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application that maintains a hash table...

7.8CVSS7.5AI score0.04246EPSS
Exploits2
UbuntuCve
UbuntuCve
added 2012/01/08 12:55 a.m.33 views

CVE-2011-5055

MaraDNS 1.3.07.12 and 1.4.08 computes hash values for DNS data without properly restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service CPU consumption by sending many crafted queries with the Recursion Desired RD bit set. NOTE:...

5CVSS5.9AI score0.01577EPSS
Exploits0References2
Cvelist
Cvelist
added 2012/01/08 12:0 a.m.63 views

CVE-2011-5055

MaraDNS 1.3.07.12 and 1.4.08 computes hash values for DNS data without properly restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service CPU consumption by sending many crafted queries with the Recursion Desired RD bit set. NOTE:...

6.4AI score0.01577EPSS
Exploits0References4
Prion
Prion
added 2011/12/30 1:55 a.m.27 views

Design/Logic Flaw

Jetty 8.1.0.RC2 and earlier computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service CPU consumption by sending many crafted parameters...

5CVSS6.7AI score0.05044EPSS
Exploits1References14Affected Software2
Debian CVE
Debian CVE
added 2011/12/30 1:0 a.m.37 views

CVE-2011-5035

Removed by vendor...

5CVSS8.1AI score0.68914EPSS
Exploits6
UbuntuCve
UbuntuCve
added 2011/12/29 12:0 a.m.27 views

CVE-2011-4815

Ruby aka CRuby before 1.8.7-p357 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service CPU consumption via crafted input to an application that maintains a hash table...

7.8CVSS7.1AI score0.04246EPSS
Exploits2References6
Rows per page
Query Builder