JVNDB-2006-000629

[Japanese]
JVNDB-2006-000629
Wiki clone products vulnerable to denial of service attacks
Overview
Wiki clones allow a user via a web browser to edit documents on the web server. Some products of Wiki clones contain a vulnerability which consumes large amounts of CPU and memory resources when handling a particular request.
CVSS Severity (What is CVSS?)
Base Metrics: 5.0 (Medium) [IPA Score] Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial

Affected Products

Hiki Development Team Hiki 0.6.0 - 0.6.6 Hiki 0.8.0 - 0.8.5

Impact
A remote attacker could execute a DoS (denial of service) attack.
Solution

Vendor Information
Hiki Development Team Hiki News : Hiki Advisory 2006-07-03
CWE (What is CWE?)

CVE (What is CVE?)
CVE-2006-3379
References
JVN : JVN#98836916 National Vulnerability Database (NVD) : CVE-2006-3379 Secunia Advisory : SA20741 SecurityFocus : 18785 ISS X-Force Database : 27507 FrSIRT Advisories : FrSIRT/ADV-2006-2643 OPEN SOURCE VULNERABILITY DATABASE (OSVDB) : 26970
Revision History
[2008/05/21] Web page published

Wiki clone products vulnerable to denial of service attacks