Zope PluggableAuthService 'updateUser()' Method Denial Of Service Vulnerability

Bugtraq ID: 48053
Class: Failure to Handle Exceptional Conditions
CVE:
Remote: Yes
Local: No
Published: May 30 2011 12:00AM
Updated: May 30 2011 12:00AM
Credit: Alan Hoey
Vulnerable: Zope Zope 2.11.8
Zope PluggableAuthService 1.7
Zope PluggableAuthService 1.6
Zope PluggableAuthService 1.5
Not Vulnerable: Zope PluggableAuthService 1.7.5
Zope PluggableAuthService 1.6.5
Zope PluggableAuthService 1.5.5


 

Privacy Statement
Copyright 2010, SecurityFocus