Lucene search
GoogleOSV:DSA-1113HistoryJul 18, 2006 - 12:00 a.m.
zope2.7 - programming error
2006-07-1800:00:00
Google
osv.dev
6
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
It was discovered that the Zope web application server allows read access
to arbitrary pages on the server, if a user has the privilege to edit
“restructured text” pages.
For the stable distribution (sarge) this problem has been fixed in
version 2.7.5-2sarge2.
The unstable distribution (sid) does no longer contain Zope 2.7 packages.
We recommend that you upgrade your zope2.7 package.
| CPE | Name | Operator | Version |
|---|---|---|---|
| zope2.7 | eq | 2.7.5-2 | |
| zope2.7 | eq | 2.7.5-2sarge1 |
References
Related
nessus
nessus
Debian DSA-1113-1 : zope2.7 - programming error
2006-10-14 00:00:00
Ubuntu 5.10 : zope2.8 vulnerability (USN-317-1)
2007-11-10 00:00:00
openvas
openvas
FreeBSD Ports: zope
2008-09-04 00:00:00
Debian: Security Advisory (DSA-1113)
2008-01-17 00:00:00
Debian Security Advisory DSA 1113-1 (zope2.7)
2008-01-17 00:00:00
debian
debian
[SECURITY] [DSA 1113-1] New zope2.7 packages fix information disclosure
2006-07-18 21:22:08
ubuntu
ubuntu
zope2.8 vulnerability
2006-07-13 00:00:00
freebsd
freebsd
zope -- information disclosure vulnerability
2006-07-05 00:00:00
cve
cve
ubuntucve
ubuntucve
debiancve
debiancve
CVE-2006-3695
2006-07-21 14:03:00
osv
osv
PYSEC-2006-2
2006-07-21 14:03:00
github
github
Trac reStructuredText breach of privacy and denial of service vulnerability
2022-05-01 07:11:38
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
Related for OSV:DSA-1113