CVE-2024-49363

Misskey is an open source, federated social media platform. In affected versions FileServerService media proxy in github.com/misskey-dev/misskey 2024.10.1 or earlier did not detect proxy loops, which allows remote actors to execute a self-propagating reflected/amplified distributed...

CVE-2024-49363

Misskey FileServerService (media proxy) in version 2024.10.1 and earlier is vulnerable: proxyHandler does not verify that incoming requests come from a proxy, enabling a self-propagating reflected/amplified DDoS via nested proxy requests ending in a redirect to another nested proxy. This can caus...

CVE-2024-49363 Uncontrolled Recursion and Asymmetric Resource Consumption (Amplification) in media/file proxy in Misskey

Misskey is an open source, federated social media platform. In affected versions FileServerService media proxy in github.com/misskey-dev/misskey 2024.10.1 or earlier did not detect proxy loops, which allows remote actors to execute a self-propagating reflected/amplified distributed...

PT-2024-33487 · Misskey · Misskey

Name of the Vulnerable Software and Affected Versions: Misskey versions 2024.10.1 or earlier Description: Misskey is an open source, federated social media platform. In affected versions, the FileServerService media proxy did not detect proxy loops, allowing remote actors to execute a...

Resources consumption in 602 Lan Suite 2004.0.04.0909

Luigi Auriemma Application: 602 Lan Suite http://www.software602.com/products/ls/ Versions: = 2004.0.04.0909 Platforms: Windows Bugs: A resources consumption through webmail B sockets consuption through telnet proxy loop Exploitation: remote Date: 06 November 2004 Author: Luigi Auriemma e-mail:...