PT-2011-3495 · Unknown · Post Revolution
Javier Bassi
·
Published
2011-06-06
·
Updated
2018-10-09
·
CVE-2011-1952
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
Post Revolution versions prior to 0.8.0c-2
Description
The issue allows remote attackers to cause a denial of service, specifically an infinite loop, by providing malformed HTML markup. This can be achieved with a sequence such as
a<.Recommendations
For versions prior to 0.8.0c-2, update to version 0.8.0c-2 or later to resolve the issue.
Exploit
Fix
DoS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Post Revolution