CVE-2006-3379

Name of the Vulnerable Software and Affected Versions Hiki Wiki versions 0.6.0 through 0.6.5 Hiki Wiki versions 0.8.0 through 0.8.5

Description The issue allows remote attackers to cause a denial of service by consuming CPU resources. This is achieved by performing a diff between large, crafted pages that trigger the worst-case scenario in terms of algorithmic complexity.

Recommendations For Hiki Wiki versions 0.6.0 through 0.6.5, consider restricting access to the diff functionality until a fix is available. For Hiki Wiki versions 0.8.0 through 0.8.5, consider implementing resource limits on CPU consumption to mitigate the risk of denial of service. At the moment, there is no information about a newer version that contains a fix for this vulnerability.