Algorithmic complexity vulnerability in Email::Address::List before 0.02, as used in RT 4.2.0 through 4.2.2, allows remote attackers to cause a denial of service (CPU consumption) via a string without an address.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-189,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| email::address::list_project | email::address::list | * |
| bestpractical | rt | 4.2.2 |
| bestpractical | rt | 4.2.0 |
| bestpractical | rt | 4.2.1 |