Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	HTTP:DOS:DJANGO-FRAMEWORK-DOS
Severity	Minor
Recommended	No
Recommended Action	Drop
Category	HTTP
Keywords	Django Web Framework Denial of Service
Release Date	2016/08/26
Update Number	2773
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: Django Web Framework Denial of Service

This signature detects attempts to exploit a known vulnerability against DJango Framework. A successful attack can result in a denial-of-service condition.

Extended Description

The authentication framework (django.contrib.auth) in Django 1.4.x before 1.4.8, 1.5.x before 1.5.4, and 1.6.x before 1.6 beta 4 allows remote attackers to cause a denial of service (CPU consumption) via a long password which is then hashed.

Affected Products

Djangoproject django 1.4
Djangoproject django 1.4.1
Djangoproject django 1.4.2
Djangoproject django 1.4.4
Djangoproject django 1.4.5
Djangoproject django 1.4.6
Djangoproject django 1.4.7
Djangoproject django 1.5
Djangoproject django 1.5.1
Djangoproject django 1.5.2
Djangoproject django 1.5.3
Djangoproject django 1.6

References

CVE: CVE-2013-1443

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Django Web Framework Denial of Service

Extended Description

Affected Products

References