Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3379

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-3379
Last Modified 07 Mar 2011 09:38:29
Published 06 Jul 2006 04:05:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-3379

Summary

Algorithmic complexity vulnerability in Hiki Wiki 0.6.0 through 0.6.5 and 0.8.0 through 0.8.5 allows remote attackers to cause a denial of service (CPU consumption) by performing a diff between large, crafted pages that trigger the worst case.

Vulnerable Systems

Application

  • Hiki Wiki 0.6.0

  • Hiki Wiki 0.6.1

  • Hiki Wiki 0.6.2

  • Hiki Wiki 0.6.3

  • Hiki Wiki 0.6.4

  • Hiki Wiki 0.6.5

  • Hiki Wiki 0.8.0

  • Hiki Wiki 0.8.1

  • Hiki Wiki 0.8.2

  • Hiki Wiki 0.8.3

  • Hiki Wiki 0.8.4

  • Hiki Wiki 0.8.5


References

SECUNIA - 20741

CONFIRM - http://hikiwiki.org/en/advisory20060703.html

XF - hiki-diff-dos(27507)

VUPEN - ADV-2006-2643

BID - 18785

OSVDB - 26970

JVN - JVN#98836916

DEBIAN - DSA-1119

SECUNIA - 21150


Last Updated: 27 May 2016 10:42:58