CVE Vulnerabilities

CVE-2007-5712

Published: Oct 30, 2007 | Modified: Jul 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.6 LOW
AV:N/AC:H/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

The internationalization (i18n) framework in Django 0.91, 0.95, 0.95.1, and 0.96, and as used in other products such as PyLucid, when the USE_I18N option and the i18n component are enabled, allows remote attackers to cause a denial of service (memory consumption) via many HTTP requests with large Accept-Language headers.

Affected Software

Name Vendor Start Version End Version
Django Django_project 0.91 0.91
Django Django_project 0.95.1 0.95.1
Django Django_project 0.96 0.96
Django Django_project 0.95 0.95

References