What is the severity of CVE-2013-2197?

CVE-2013-2197 has a medium severity rating due to its potential for causing denial of service through excessive login attempts.

How do I fix CVE-2013-2197?

To fix CVE-2013-2197, upgrade the Login Security module to version 6.x-1.3 or 7.x-1.3 or later.

Who is affected by CVE-2013-2197?

CVE-2013-2197 affects users of the Login Security module versions prior to 6.x-1.3 and 7.x-1.3 on Drupal.

What are the symptoms of CVE-2013-2197 exploitation?

Exploitation of CVE-2013-2197 can lead to increased CPU consumption due to numerous failed login attempts.

Is CVE-2013-2197 a remote attack vulnerability?

Yes, CVE-2013-2197 allows remote attackers to exploit the vulnerability without requiring local access.

Vulnerability/
CVE-2013-2197

medium

4.3

CWE

119

28/8/2013

17/9/2024

CVE-2013-2197: Buffer Overflow

First published: Wed Aug 28 2013(Updated: )

The Login Security module 6.x-1.x before 6.x-1.3 and 7.x-1.x before 7.x-1.3 for Drupal, when using the login delay option, allows remote attackers to cause a denial of service (CPU consumption) via a large number of failed login attempts.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
Login Security Project Login Security	=6.x-1.0
Login Security Project Login Security	=6.x-1.0-beta1
Login Security Project Login Security	=6.x-1.0-rc1
Login Security Project Login Security	=6.x-1.1
Login Security Project Login Security	=6.x-1.2
Login Security Project Login Security	=6.x-1.3
Login Security Project Login Security	=6.x-1.x-dev
Login Security Project Login Security	=7.x-1.0
Login Security Project Login Security	=7.x-1.1
Login Security Project Login Security	=7.x-1.2
Login Security Project Login Security	=7.x-1.x-dev
Drupal Drupal

Remedy

https://drupal.org/node/2023503

Remedy

https://drupal.org/node/2023507

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-2197?
CVE-2013-2197 has a medium severity rating due to its potential for causing denial of service through excessive login attempts.
How do I fix CVE-2013-2197?
To fix CVE-2013-2197, upgrade the Login Security module to version 6.x-1.3 or 7.x-1.3 or later.
Who is affected by CVE-2013-2197?
CVE-2013-2197 affects users of the Login Security module versions prior to 6.x-1.3 and 7.x-1.3 on Drupal.
What are the symptoms of CVE-2013-2197 exploitation?
Exploitation of CVE-2013-2197 can lead to increased CPU consumption due to numerous failed login attempts.
Is CVE-2013-2197 a remote attack vulnerability?
Yes, CVE-2013-2197 allows remote attackers to exploit the vulnerability without requiring local access.

collector/nvd-index
agent/references
agent/type
agent/softwarecombine
agent/remedy
agent/severity
agent/weakness
agent/author
agent/tags
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
vendor/login security project
canonical/login security project login security
version/login security project login security/6.x-1.0
version/login security project login security/6.x-1.0-beta1
version/login security project login security/6.x-1.0-rc1
version/login security project login security/6.x-1.1
version/login security project login security/6.x-1.2
version/login security project login security/6.x-1.3
version/login security project login security/6.x-1.x-dev
version/login security project login security/7.x-1.0
version/login security project login security/7.x-1.1
version/login security project login security/7.x-1.2
version/login security project login security/7.x-1.x-dev
vendor/drupal
canonical/drupal drupal

Frequently Asked Questions

What is the severity of CVE-2013-2197?
CVE-2013-2197 has a medium severity rating due to its potential for causing denial of service through excessive login attempts.
How do I fix CVE-2013-2197?
To fix CVE-2013-2197, upgrade the Login Security module to version 6.x-1.3 or 7.x-1.3 or later.
Who is affected by CVE-2013-2197?
CVE-2013-2197 affects users of the Login Security module versions prior to 6.x-1.3 and 7.x-1.3 on Drupal.
What are the symptoms of CVE-2013-2197 exploitation?
Exploitation of CVE-2013-2197 can lead to increased CPU consumption due to numerous failed login attempts.
Is CVE-2013-2197 a remote attack vulnerability?
Yes, CVE-2013-2197 allows remote attackers to exploit the vulnerability without requiring local access.

CVE-2013-2197: Buffer Overflow

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-2197?

How do I fix CVE-2013-2197?

Who is affected by CVE-2013-2197?

What are the symptoms of CVE-2013-2197 exploitation?

Is CVE-2013-2197 a remote attack vulnerability?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2013-2197?

How do I fix CVE-2013-2197?

Who is affected by CVE-2013-2197?

What are the symptoms of CVE-2013-2197 exploitation?

Is CVE-2013-2197 a remote attack vulnerability?