QwikSec

Security Database

CVE

CWE

Training

CVE-2009-3277

Published: Sep 21, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

DataVault.Tesla/Impl/TypeSystem/AssociationHelper.cs in datavault allows context-dependent attackers to cause a denial of service (CPU consumption) via an input string composed of an [ (open bracket) followed by many commas, related to a certain regular expression, aka a "ReDoS" vulnerability.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.checkmarx.com/Upload/Documents/PDF/Checkmarx_OWASP_IL_2009_ReDoS.pdf

x_refsource_MISC

20090910 Regular Expression Denial of Service

mailing-list

x_refsource_BUGTRAQ

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.