Django Password Reset Mechanism Remote Denial of Service Vulnerability

Bugtraq ID: 45563
Class: Design Error
CVE: CVE-2010-4535
Remote: Yes
Local: No
Published: Dec 23 2010 12:00AM
Updated: Feb 14 2011 07:59PM
Credit: Paul McMillan
Vulnerable: Ubuntu Ubuntu Linux 9.10 sparc
Ubuntu Ubuntu Linux 9.10 powerpc
Ubuntu Ubuntu Linux 9.10 lpia
Ubuntu Ubuntu Linux 9.10 i386
Ubuntu Ubuntu Linux 9.10 ARM
Ubuntu Ubuntu Linux 9.10 amd64
Ubuntu Ubuntu Linux 10.10 powerpc
Ubuntu Ubuntu Linux 10.10 i386
Ubuntu Ubuntu Linux 10.10 ARM
Ubuntu Ubuntu Linux 10.10 amd64
Ubuntu Ubuntu Linux 10.04 sparc
Ubuntu Ubuntu Linux 10.04 powerpc
Ubuntu Ubuntu Linux 10.04 i386
Ubuntu Ubuntu Linux 10.04 ARM
Ubuntu Ubuntu Linux 10.04 amd64
Red Hat Fedora 14
Red Hat Fedora 13
Pardus Linux 2009 0
Django Django 1.1.1
Django Django 1.0.4
Django Django 1.0.3
Django Django 0.96.2
Django Django 0.96.1
Django Django 0.95.3
Django Django 0.95.2
Django Django 0.95.1
Django Django 0.91.2
Django Django 0.91.1
Django Django 1.2.2
Django Django 1.2
Django Django 1.1
Django Django 1.0
Django Django 0.96.4
Django Django 0.96
Django Django 0.95 SVN
Django Django 0.95
Django Django 0.91
Not Vulnerable: Django Django 1.3 beta 1
Django Django 1.2.4
Django Django 1.1.3


 

Privacy Statement
Copyright 2010, SecurityFocus