Drupal Core CVE-2012-1588 Remote Denial of Service Vulnerability
BID:53368
Info
Drupal Core CVE-2012-1588 Remote Denial of Service Vulnerability
| Bugtraq ID: | 53368 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2012-1588 |
| Remote: | Yes |
| Local: | No |
| Published: | May 02 2012 12:00AM |
| Updated: | May 02 2012 12:00AM |
| Credit: | Jay Wineinger and Lin Clark |
| Vulnerable: |
Drupal Drupal 7.6 Drupal Drupal 7.5 Drupal Drupal 7.4 Drupal Drupal 7.3 Drupal Drupal 7.2 Drupal Drupal 7.12 Drupal Drupal 7.11 Drupal Drupal 7.10 Drupal Drupal 7.1 |
| Not Vulnerable: |
Drupal Drupal 7.13 |
Discussion
Drupal Core CVE-2012-1588 Remote Denial of Service Vulnerability
Drupal is prone to a remote denial-of-service vulnerability.
An attacker can exploit this issue to cause an application to crash, denying service to legitimate users.
Drupal versions 7.x through 7.12 are vulnerable.
Drupal is prone to a remote denial-of-service vulnerability.
An attacker can exploit this issue to cause an application to crash, denying service to legitimate users.
Drupal versions 7.x through 7.12 are vulnerable.
Exploit / POC
Drupal Core CVE-2012-1588 Remote Denial of Service Vulnerability
Attackers can exploit this issue through a browser.
Attackers can exploit this issue through a browser.
Solution / Fix
Drupal Core CVE-2012-1588 Remote Denial of Service Vulnerability
Solution:
Updates are available. Please see the references for more details.
Solution:
Updates are available. Please see the references for more details.
References
Drupal Core CVE-2012-1588 Remote Denial of Service Vulnerability
References:
References:
- Drupal Homepage (Drupal)
- SA-CORE-2012-002 - Drupal core multiple vulnerabilities (DRUPAL)