Django CVE-2014-0481 Denial of Service Vulnerability
BID:69423
Info
Django CVE-2014-0481 Denial of Service Vulnerability
| Bugtraq ID: | 69423 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2014-0481 |
| Remote: | Yes |
| Local: | No |
| Published: | Aug 26 2014 12:00AM |
| Updated: | Apr 16 2015 05:49PM |
| Credit: | David Wilson |
| Vulnerable: |
Ubuntu Ubuntu Linux 12.04 LTS i386 Ubuntu Ubuntu Linux 12.04 LTS amd64 Ubuntu Ubuntu Linux 10.04 sparc Ubuntu Ubuntu Linux 10.04 powerpc Ubuntu Ubuntu Linux 10.04 i386 Ubuntu Ubuntu Linux 10.04 ARM Ubuntu Ubuntu Linux 10.04 amd64 Gentoo Linux Debian Linux 6.0 sparc Debian Linux 6.0 s/390 Debian Linux 6.0 powerpc Debian Linux 6.0 mips Debian Linux 6.0 ia-64 Debian Linux 6.0 ia-32 Debian Linux 6.0 arm Debian Linux 6.0 amd64 |
| Not Vulnerable: | |
Discussion
Django CVE-2014-0481 Denial of Service Vulnerability
Django is prone to a denial-of-service vulnerability.
A remote attacker may exploit this issue to trigger denial-of-service conditions due to excessive CPU resource consumption.
Django is prone to a denial-of-service vulnerability.
A remote attacker may exploit this issue to trigger denial-of-service conditions due to excessive CPU resource consumption.
Exploit / POC
Django CVE-2014-0481 Denial of Service Vulnerability
An attacker can exploit this issue by using readily available utilities.
An attacker can exploit this issue by using readily available utilities.
Solution / Fix
Django CVE-2014-0481 Denial of Service Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Django CVE-2014-0481 Denial of Service Vulnerability
References:
References:
- Django Homepage (Django)
- Security releases issued (Django)
- DSA-3010-1 python-django -- security update (Debian)