 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| CVE ID: | CVE-2013-1883 |
| Description: | Mantis Bug Tracker (aka MantisBT) 1.2.12 before 1.2.15 allows remote attackers to cause a denial of service (resource consumption) via a filter using a criteria, text search, and the "any condition" match type. |
| Test IDs: | 1.3.6.1.4.1.25623.1.0.804650 |
| Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2013-1883 58626 http://www.securityfocus.com/bid/58626 [oss-security] 20130322 Re: CVE request: MantisBT text search query can crash site http://www.openwall.com/lists/oss-security/2013/03/22/2 http://www.mantisbt.org/bugs/view.php?id=15573 http://www.mantisbt.org/bugs/view.php?id=15573 https://bugzilla.redhat.com/show_bug.cgi?id=924340 https://bugzilla.redhat.com/show_bug.cgi?id=924340 https://github.com/mantisbt/mantisbt/commit/d16988c3ca232a7 https://github.com/mantisbt/mantisbt/commit/d16988c3ca232a7 mantisbt-filterapi-dos(83347) https://exchange.xforce.ibmcloud.com/vulnerabilities/83347 |