Hash collision attack vulnerability in Jenkins before 1.447, Jenkins LTS before 1.424.2, and Jenkins Enterprise by CloudBees 1.424.x before 1.424.2.1 and 1.400.x before 1.400.0.11 could allow remote attackers to cause a considerable CPU load, aka "the Hash DoS attack."
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2012/01/20/8 | Mailing List Third Party Advisory |
https://access.redhat.com/security/cve/cve-2012-0785 | Broken Link |
https://jenkins.io/security/advisory/2012-01-12/ | Vendor Advisory |
https://security-tracker.debian.org/tracker/CVE-2012-0785 | Third Party Advisory |
https://www.cloudbees.com/jenkins-security-advisory-2012-01-12 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2020-02-24T16:54:05
Updated: 2020-02-24T16:54:05
Reserved: 2012-01-19T00:00:00
Link: CVE-2012-0785
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-02-24T17:15:13.590
Modified: 2020-03-04T17:31:08.700
Link: CVE-2012-0785
JSON object: View
Redhat Information
No data.
CWE