Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Moment.js Uncontrolled Resource Consumption Vulnerability - CVE-2016-4055 - Vulnerability Database
Moment.js

Moment.js Uncontrolled Resource Consumption Vulnerability - CVE-2016-4055

Medium
Reference: CVE-2016-4055
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2016-4055
Title: Moment.js Uncontrolled Resource Consumption Vulnerability
Overview:

The duration function in the moment package before 2.11.2 for Node.js allows remote attackers to cause a denial of service (CPU consumption) via a long string aka a quotregular expression Denial of Service (ReDoS).quot