CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-5098

lib/exec/fetch.php in DokuWiki before 2006-03-09e allows remote attackers to cause a denial of service (CPU consumption) via large w and h parameters, when resizing an image.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.5%

CVSS Severity

CVSS v2 Score 5.0

References

http://bugs.splitbrain.org/?do=details&id=924
http://secunia.com/advisories/22192
http://secunia.com/advisories/22199
http://security.gentoo.org/glsa/glsa-200609-20.xml
http://www.vupen.com/english/advisories/2006/3851
http://bugs.splitbrain.org/?do=details&id=924
http://secunia.com/advisories/22192
http://secunia.com/advisories/22199
http://security.gentoo.org/glsa/glsa-200609-20.xml
http://www.vupen.com/english/advisories/2006/3851

Products affected by CVE-2006-5098

Andreas Gohr » Dokuwiki » Version: release_2006-03-05

cpe:2.3:a:andreas_gohr:dokuwiki:release_2006-03-05
Andreas Gohr » Dokuwiki » Version: release_2006-03-09

cpe:2.3:a:andreas_gohr:dokuwiki:release_2006-03-09
Andreas Gohr » Dokuwiki » Version: release_2006-03-09e

cpe:2.3:a:andreas_gohr:dokuwiki:release_2006-03-09e

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-5098

Products

Pricing

Contact Us