[Zope] Regular expressions insecurity?
Mike Renfro
renfro@tntech.edu
Fri, 17 Jan 2003 08:15:26 -0600
On Fri, Jan 17, 2003 at 02:04:57PM +0100, Tue Wennerberg wrote:
> I pretty much knew it was a FAQ (should have mentioned that). It
> came up on our local user group list twice this week. But.. I've
> googled, I've searched Zope.org and I've checked the archives for
> this mailing list, but never found an actual explanation.
http://zope.nipltd.com/public/lists/zope-archive.nsf/ByKey/B2A709748C869DA5
Basic summary: easy denial of service possibility if you have
untrusted users.
--
Mike Renfro / R&D Engineer, Center for Manufacturing Research,
931 372-3601 / Tennessee Technological University -- renfro@tntech.edu