Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-6330
HistoryJan 04, 2013 - 9:55 p.m.

CVE-2012-6330

2013-01-0421:55:01
CWE-189
[email protected]
web.nvd.nist.gov
27
cve-2012-6330
twiki
foswiki
localization
dos
memory consumption
maketext macro

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.4 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.3%

JSON

The localization functionality in TWiki before 5.1.3, and Foswiki 1.0.x through 1.0.10 and 1.1.x through 1.1.6, allows remote attackers to cause a denial of service (memory consumption) via a large integer in a %MAKETEXT% macro.

Affected configurations

NVD
Node
twikitwikiRange5.1.2
OR
twikitwikiMatch5.1.0
OR
twikitwikiMatch5.1.1
Node
foswikifoswikiMatch1.0.0
OR
foswikifoswikiMatch1.0.1
OR
foswikifoswikiMatch1.0.2
OR
foswikifoswikiMatch1.0.3
OR
foswikifoswikiMatch1.0.4
OR
foswikifoswikiMatch1.0.10
OR
foswikifoswikiMatch1.1.0
OR
foswikifoswikiMatch1.1.1
OR
foswikifoswikiMatch1.1.2
OR
foswikifoswikiMatch1.1.3
OR
foswikifoswikiMatch1.1.4
OR
foswikifoswikiMatch1.1.5
OR
foswikifoswikiMatch1.1.6

Related

seebug 1
openvas 3
metasploit 1
prion 1
cvelist 1
nvd 1
dsquare 1
securityvulns 3
packetstorm 1
nessus 1
exploitdb 1
zdt 1
seebug
seebug
Foswiki MAKETEXT Remote Command Execution
2014-07-01 00:00:00
openvas
openvas
Foswiki 1.0.x < 1.0.11 / 1.1.x < 1.1.7 DoS Vulnerability
2017-03-21 00:00:00
TWiki 'MAKETEXT' variable RCE Vulnerability
2012-12-27 00:00:00
Foswiki 'MAKETEXT' variable RCE Vulnerability
2013-01-02 00:00:00
metasploit
metasploit
Foswiki MAKETEXT Remote Command Execution
2012-12-21 21:08:08
prion
prion
Design/Logic Flaw
2013-01-04 21:55:00
cvelist
cvelist
CVE-2012-6330
2013-01-04 21:00:00
nvd
nvd
CVE-2012-6330
2013-01-04 21:55:01
dsquare
dsquare
Foswiki 1.1.5 RCE
2013-01-13 00:00:00
securityvulns
securityvulns
Foswiki Security Alert CVE-2012-6329, CVE-2012-6330 Remote code execution and other vulnerabilities in MAKETEXT macro
2012-12-18 00:00:00
Foswiki Security: Alert CVE-2013-1666 - Remote Code Execution Vulnerability in MAKETEXT macro.
2013-02-24 00:00:00
Web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2012-12-18 00:00:00
packetstorm
packetstorm
Foswiki MAKETEXT Remote Command Execution
2012-12-24 00:00:00
nessus
nessus
TWiki < 5.1.3 Multiple Vulnerabilities
2013-01-07 00:00:00
exploitdb
exploitdb
Foswiki MAKETEXT - Remote Command Execution (Metasploit)
2012-12-23 00:00:00
zdt
zdt
Foswiki 1.0.10 / 1.1.6 Code Injection / Denial Of Service
2012-12-18 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.4 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.3%

JSON
Related for CVE-2012-6330
seebug1openvas3metasploit1prion1cvelist1nvd1dsquare1securityvulns3packetstorm1nessus1exploitdb1zdt1