Comment 9 for bug 1100282
Revision history for this message
| Dolph Mathews (dolph) wrote Re: DoS through XML entity expansion | #9 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
513534c
demo site
(Get the code!)
I think the description is accurate, but you could be more specific, I suppose. Instead of:
> an unauthenticated attacker may crash the Keystone API server, resulting in a denial of service.
... change to:
> an unauthenticated attacker may consume excessive resources on the Keystone API server, resulting in a denial of service and potentially a crash.