Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Django Improper Input Validation Vulnerability - CVE-2012-3443 - Vulnerability Database
Django

Django Improper Input Validation Vulnerability - CVE-2012-3443

Medium
Reference: CVE-2012-3443
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2012-3443
Title: Django Improper Input Validation Vulnerability
Overview:

The django.forms.ImageField class in the form system in Django before 1.3.2 and 1.4.x before 1.4.1 completely decompresses image data during image validation which allows remote attackers to cause a denial of service (memory consumption) by uploading an image file.