CVE-2006-4272 Information
Description
LICENSE README.md cvefilelist cvelist nvdcve nvdpages.sh scripts test-CVE-2017-1882.markdown test-CVE-2017-18822.markdown tmpvendorlinks DISPUTED LICENSE README.md cvefilelist cvelist nvdcve nvdpages.sh scripts test-CVE-2017-1882.markdown test-CVE-2017-18822.markdown tmpvendorlinks Jelsoft vBulletin 3.5.4 allows remote attackers to register multiple arbitrary users and cause a denial of service (resource consumption) via a large number of requests to register.php. NOTE: the vendor has disputed this vulnerability stating \If you have the CAPTCHA enabled then the registrations wont even go through. … if you are talking about the flood being allowed in the first place then surely this is something that should be handled at the server level.\
Reference
http://archives.neohapsis.com/archives/bugtraq/2006-08/0381.html http://securityreason.com/securityalert/1426 http://www.securityfocus.com/archive/1/443648/100/0/threaded
Share on: