Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-0316

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2013-0316
Last Modified 28 Mar 2013 12:00:00
Published 27 Mar 2013 05:55:02
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2013-0316

Summary

The Image module in Drupal 7.x before 7.20 allows remote attackers to cause a denial of service (CPU and disk space consumption) via a large number of new derivative requests.

Vulnerable Systems

Application

  • Drupal 7.0

  • Drupal 7.1

  • Drupal 7.10

  • Drupal 7.11

  • Drupal 7.12

  • Drupal 7.13

  • Drupal 7.14

  • Drupal 7.15

  • Drupal 7.16

  • Drupal 7.17

  • Drupal 7.18

  • Drupal 7.19

  • Drupal 7.2

  • Drupal 7.3

  • Drupal 7.4

  • Drupal 7.5

  • Drupal 7.6

  • Drupal 7.7

  • Drupal 7.8

  • Drupal 7.9

  • Drupal 7.x-dev


References

CONFIRM - http://drupal.org/SA-CORE-2013-002

MLIST - [oss-security] 20130220 Re: CVE request for Drupal Core and contributed modules


Last Updated: 27 May 2016 11:02:09