Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Debian Local Security Checks >> [DSA1119] DSA-1119-1 hiki


Vulnerability Assessment Details

[DSA1119] DSA-1119-1 hiki

Vulnerability Assessment Summary
DSA-1119-1 hiki

Detailed Explanation for this Vulnerability Assessment

Akira Tanaka discovered a vulnerability in Hiki Wiki, a Wiki engine
written in Ruby that permits remote attackers to cause a denial of
service via high CPU consumption using by performing a diff between
large and specially crafted Wiki pages.
For the stable distribution (sarge) this problem has been fixed in
version 0.6.5-2.
For the unstable distribution (sid) this problem has been fixed in
version 0.8.6-1.
We recommend that you upgrade your hiki package.


Solution : http://www.debian.org/security/2006/dsa-1119
Network Security Threat Level: High

Networks Security ID: 18785

Vulnerability Assessment Copyright: This script is (C) 2007 Michel Arboi

Cables, Connectors

Matched Pair Intel Xeon E5-2680 v2 2.80GHz 25MB 8GT/s SR1A6 LGA2011 Processors
$520.0
Matched Pair Intel Xeon E5-2680 v2 2.80GHz 25MB 8GT/s SR1A6 LGA2011 Processors pictureSUPERMICRO X8DTH-6F LGA1366 XEON EATX Motherboard
$249.99
SUPERMICRO X8DTH-6F LGA1366 XEON EATX Motherboard pictureApple Mac Pro Intel Xeon 2.66Ghz 10GB RAM NVIDIA CS6 Loaded w/video&editing apps
$450.0
Apple Mac Pro Intel Xeon 2.66Ghz 10GB RAM NVIDIA CS6 Loaded w/video&editing apps pictureDell Precision T3600 Tower PC Intel Xeon Quad Core 3.60GHz 4GB 250GB Refurbished
$374.99
Dell Precision T3600 Tower PC Intel Xeon Quad Core 3.60GHz 4GB 250GB Refurbished picture


Discussions

No Discussions have been posted on this vulnerability.