CVE-2015-6736

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2015-6736
The Quiz extension for MediaWiki allows remote attackers to cause a denial of service via regex metacharacters in a regular expression.

5.0 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References
Link Resource
http://www.openwall.com/lists/oss-security/2015/08/12/6
https://lists.wikimedia.org/pipermail/mediawiki-announce/2015-August/000179.html Vendor Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2015-August/165193.html
http://www.openwall.com/lists/oss-security/2015/08/27/6
http://www.securityfocus.com/bid/76362
https://security.gentoo.org/glsa/201510-05
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

cpe:2.3:a:quiz_project:quiz:-:*:*:*:*:mediawiki:*:*
Information

Published : 2015-09-01 07:59

Updated : 2016-12-07 10:21

NVD link : CVE-2015-6736

Mitre link : CVE-2015-6736

JSON object : View

CWE
CWE-17

DEPRECATED: Code

Advertisement

dedicated server usa
Products Affected

quiz_project

  • quiz