Out-of-bounds Write in cortezaproject/corteza-server
Nov 8th 2021
There's no bound limit to the number of "characters/special characters" in the name field of the user.
Vulnerable Field: Full Name
By sending a very long string it’s possible to cause a denial a service attack on the server. This may lead to the website becoming unavailable or unresponsive. The bulk (unbounded) input will store on the server & the DoS attack influences both server-side and client-side.
Proof of Concept
Reproduction steps Go to: https://latest.cortezaproject.org/auth Vulnerable field: Full Name Update profile Done
This vulnerability is capable of Bringing down both the availability of the Client & server-side resources. Application-Level DoS