First published: Fri Jan 04 2013(Updated: )
The localization functionality in TWiki before 5.1.3, and Foswiki 1.0.x through 1.0.10 and 1.1.x through 1.1.6, allows remote attackers to cause a denial of service (memory consumption) via a large integer in a %MAKETEXT% macro.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Twiki Twiki | <=5.1.2 | |
Twiki Twiki | =5.1.0 | |
Twiki Twiki | =5.1.1 | |
Foswiki Foswiki | =1.0.0 | |
Foswiki Foswiki | =1.0.1 | |
Foswiki Foswiki | =1.0.2 | |
Foswiki Foswiki | =1.0.3 | |
Foswiki Foswiki | =1.0.4 | |
Foswiki Foswiki | =1.0.10 | |
Foswiki Foswiki | =1.1.0 | |
Foswiki Foswiki | =1.1.1 | |
Foswiki Foswiki | =1.1.2 | |
Foswiki Foswiki | =1.1.3 | |
Foswiki Foswiki | =1.1.4 | |
Foswiki Foswiki | =1.1.5 | |
Foswiki Foswiki | =1.1.6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.