CVE-2013-0316
Drupal 7.x - Denial of Service via Image Module Derivative Requests
Title source: llmDescription
The Image module in Drupal 7.x before 7.20 allows remote attackers to cause a denial of service (CPU and disk space consumption) via a large number of new derivative requests.
References (2)
Core 2
Core References
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2013/02/21/5
Patch, Vendor Advisory x_refsource_confirm
http://drupal.org/SA-CORE-2013-002
Scores
EPSS
0.0063
EPSS Percentile
70.5%
Details
CWE
CWE-399
Status
published
Products (21)
drupal/drupal
7.0 (16 CPE variants)
drupal/drupal
7.1
drupal/drupal
7.2
drupal/drupal
7.3
drupal/drupal
7.4
drupal/drupal
7.5
drupal/drupal
7.6
drupal/drupal
7.7
drupal/drupal
7.8
drupal/drupal
7.9
... and 11 more
Published
Mar 27, 2013
Tracked Since
Feb 18, 2026