CVE-2007-0124

Sažetak

Unspecified vulnerability in Drupal before 4.6.11, and 4.7 before 4.7.5, when MySQL is used, allows remote authenticated users to cause a denial of service by poisoning the page cache via unspecified vectors, which triggers erroneous 404 HTTP errors for pages that exist.

Reference

http://drupal.org/node/104238
http://osvdb.org/32131
http://secunia.com/advisories/23586
http://securityreason.com/securityalert/2115
http://www.securityfocus.com/archive/1/456056/100/0/threaded
http://www.securityfocus.com/bid/21895
http://www.vupen.com/english/advisories/2007/0051

CVSS

Base:	3.5
Impact:	2.9
Exploitability:	6.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	PARTIAL

CVSS vektor

AV:N/AC:M/Au:S/C:N/I:N/A:P

Zadnje važnije ažuriranje

16-10-2018 - 16:31

Objavljeno

09-01-2007 - 02:28