Vulnerabilities > CVE-2010-3198 - Denial Of Service vulnerability in Zope
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL network
zope
Summary
ZServer in Zope 2.10.x before 2.10.12 and 2.11.x before 2.11.7 allows remote attackers to cause a denial of service (crash of worker threads) via vectors that trigger uncaught exceptions.
Vulnerable Configurations
References
- http://www.securityfocus.com/bid/42939
- http://www.vupen.com/english/advisories/2010/2275
- http://www.zope.org/Products/Zope/2.10.12/CHANGES.txt
- http://www.zope.org/Products/Zope/2.11.7/CHANGES.txt
- https://bugs.launchpad.net/zope2/+bug/627988
- https://mail.zope.org/pipermail/zope-announce/2010-September/002247.html