Zope PluggableAuthService 'updateUser()' Method Denial Of Service Vulnerability

Zope PluggableAuthService 'updateUser()' Method Denial Of Service Vulnerability

References:

[Zope-Annce] PAS 1.5.5, 1.6.5, and 1.7.5 released (Tres Seaver)
manage_updatePasswordForm allows DoS against other users (Tres Seaver)
PluggableAuthService Homepage (Zope)
Zope Homepage (Zope)

Privacy Statement
Copyright 2010, SecurityFocus