Apache CouchDB UUIDs Request Denial Of Service Vulnerability
Publish Date: 21 de июля de 2015
Severity: : Medium
CVE Kennungen: : CVE-2014-2668
Advisory Date: 21 de июля de 2015
DESCRIPTION
Apache CouchDB 1.5.0 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) via the count parameter to /_uuids.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1005728
Trend Micro Deep Security DPI Rule Name: 1005728 - Parameter Value Length Restriction
AFFECTED SOFTWARE AND VERSION:
- apache couchdb 1.5.0