Description
multipart/parser.rb in Rack 1.3.x before 1.3.8 and 1.4.x before 1.4.3 allows remote attackers to cause a denial of service (memory consumption and out-of-memory error) via a long string in a Multipart HTTP packet.
Related CPE's
a
rack_project
rack
11
References
CVSS impact metrics
AV:N/AC:L/Au:N/C:N/I:N/A:P
5 · Medium
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Modified
Published
2013-03-01T05:40:17.037
12 years agoLast modified
2023-02-13T04:38:10.583
2 years ago