Lucene search
FreeBSD6E8F54AF-A07D-11DE-A649-000C2955660FHistoryAug 28, 2009 - 12:00 a.m.
ikiwiki -- insufficient blacklisting in teximg plugin
2009-08-2800:00:00
vuxml.freebsd.org
6
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.005
Percentile
76.9%
The IkiWiki development team reports:
IkiWikis teximg pluginโs blacklisting of insecure TeX commands
is insufficient; it can be bypassed and used to read arbitrary
files.
References
Related
openvas
openvas
FreeBSD Ports: ikiwiki
2009-09-15 00:00:00
Fedora Core 11 FEDORA-2009-9244 (ikiwiki)
2009-09-15 00:00:00
FreeBSD Ports: ikiwiki
2009-09-15 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: ikiwiki-3.20100312-1.fc11
2010-04-01 01:51:27
[SECURITY] Fedora 11 Update: ikiwiki-3.1415926-1.fc11
2009-09-11 23:35:06
[SECURITY] Fedora 10 Update: ikiwiki-2.72-2.fc10
2009-09-11 23:26:00
cvelist
cvelist
CVE-2009-2944
2009-08-31 20:00:00
nessus
nessus
Fedora 10 : ikiwiki-2.72-2.fc10 (2009-9254)
2009-09-14 00:00:00
Fedora 11 : ikiwiki-3.1415926-1.fc11 (2009-9244)
2009-09-14 00:00:00
Debian DSA-1875-1 : ikiwiki - missing input sanitising
2010-02-24 00:00:00
securityvulns
securityvulns
debian
debian
[SECURITY] [DSA 1875-1] New ikiwiki packages fix information disclosure
2009-08-31 17:27:34
ubuntucve
ubuntucve
CVE-2009-2944
2009-08-31 00:00:00
osv
osv
ikiwiki - information disclosure
2009-08-31 00:00:00
prion
prion
Design/Logic Flaw
2009-08-31 20:30:00
debiancve
debiancve
CVE-2009-2944
2009-08-31 20:30:00
nvd
nvd
CVE-2009-2944
2009-08-31 20:30:00
seebug
seebug
ikiwiki teximgๆไปถไธๅฎๅ
จTeXๅฝไปคไฟกๆฏๆณ้ฒๆผๆด
2009-09-02 00:00:00
cve
cve
CVE-2009-2944
2009-08-31 20:30:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.005
Percentile
76.9%
Related for 6E8F54AF-A07D-11DE-A649-000C2955660F