[Zope] Regular expressions insecurity?

Mike Renfro renfro@tntech.edu
Fri, 17 Jan 2003 08:15:26 -0600


On Fri, Jan 17, 2003 at 02:04:57PM +0100, Tue Wennerberg wrote:

> I pretty much knew it was a FAQ (should have mentioned that). It
> came up on our local user group list twice this week. But.. I've
> googled, I've searched Zope.org and I've checked the archives for
> this mailing list, but never found an actual explanation.

http://zope.nipltd.com/public/lists/zope-archive.nsf/ByKey/B2A709748C869DA5

Basic summary: easy denial of service possibility if you have
untrusted users.

-- 
Mike Renfro  / R&D Engineer, Center for Manufacturing Research,
931 372-3601 / Tennessee Technological University -- renfro@tntech.edu