CVE-2013-4599

Name of the Vulnerable Software and Affected Versions Drupal Misery module versions 6.x-2.x before 6.x-2.5 Drupal Misery module versions 7.x-2.x before 7.x-2.2

Description The issue allows remote attackers to cause a denial of service, specifically process consumption, via multiple requests when the delay misery configuration is set to a high value.

Recommendations For Drupal Misery module version 6.x-2.x, update to version 6.x-2.5 or later. For Drupal Misery module version 7.x-2.x, update to version 7.x-2.2 or later. As a temporary workaround, consider setting the delay misery configuration to a lower value to minimize the risk of exploitation.