Lucene search
MitreCVELIST:CVE-2008-6954HistoryAug 12, 2009 - 10:00 a.m.
CVE-2008-6954
2009-08-1210:00:00
mitre
www.cve.org
The web interface (CobblerWeb) in Cobbler before 1.2.9 allows remote authenticated users to execute arbitrary Python code in cobblerd by editing a Cheetah kickstart template to import arbitrary Python modules.
References
freshmeat.net/projects/cobbler/releases/288374
osvdb.org/50291
secunia.com/advisories/32737
secunia.com/advisories/32804
www.securityfocus.com/bid/32317
exchange.xforce.ibmcloud.com/vulnerabilities/46625
www.redhat.com/archives/fedora-package-announce/2008-November/msg00462.html
www.redhat.com/archives/fedora-package-announce/2008-November/msg00485.html
Related
openvas
openvas
Fedora Update for cobbler FEDORA-2008-9745
2009-02-17 00:00:00
Fedora Update for cobbler FEDORA-2008-9745
2009-02-17 00:00:00
Fedora Update for cobbler FEDORA-2008-9723
2009-02-17 00:00:00
cve
cve
CVE-2008-6954
2009-08-12 10:30:00
CVE-2010-2235
2010-12-09 20:00:17
nessus
nessus
Fedora 8 : cobbler-1.2.9-1.fc8 (2008-9723)
2008-11-21 00:00:00
Fedora 9 : cobbler-1.2.9-1.fc9 (2008-9745)
2008-11-21 00:00:00
RHEL 4 / 5 : cobbler (RHSA-2010:0775)
2010-10-18 00:00:00
gitlab
gitlab
github
github
Cobbler Web Interface Kickstart Template Remote Privilege Escalation Vulnerability
2022-05-17 02:10:02
Cobbler is vulnerable to code injection
2022-05-17 05:45:48
prion
prion
Code injection
2009-08-12 10:30:00
Design/Logic Flaw
2010-12-09 20:00:00
osv
osv
Cobbler Web Interface Kickstart Template Remote Privilege Escalation Vulnerability
2022-05-17 02:10:02
Cobbler is vulnerable to code injection
2022-05-17 05:45:48
nvd
nvd
CVE-2008-6954
2009-08-12 10:30:00
CVE-2010-2235
2010-12-09 20:00:17
cvelist
cvelist
CVE-2010-2235
2010-12-09 19:00:00