Lucene search
GoogleOSV:DSA-2512-1HistoryJul 12, 2012 - 12:00 a.m.
mono - missing input sanitising
2012-07-1200:00:00
Google
osv.dev
7
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
Marcus Meissner discovered that the web server included in Mono performed
insufficient sanitising of requests, resulting in cross-site scripting.
For the stable distribution (squeeze), this problem has been fixed in
version 2.6.7-5.1.
For the unstable distribution (sid), this problem has been fixed in
version 2.10.8.1-5.
We recommend that you upgrade your mono packages.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mono | eq | 2.6.7-5+s390x | |
| mono | eq | 2.6.7-5 |
References
Related
prion
prion
Cross site scripting
2012-07-12 21:55:00
ubuntucve
ubuntucve
CVE-2012-3382
2012-07-12 00:00:00
openvas
openvas
Mandriva Update for mono MDVSA-2012:140 (mono)
2012-10-25 00:00:00
Debian: Security Advisory (DSA-2512-1)
2012-08-10 00:00:00
Mandriva Update for mono MDVSA-2012:140 (mono)
2012-10-25 00:00:00
debian
debian
[SECURITY] [DSA 2512-1] mono security update
2012-07-12 19:27:33
nessus
nessus
Debian DSA-2512-1 : mono - missing input sanitising
2012-07-18 00:00:00
Mandriva Linux Security Advisory : mono (MDVSA-2012:140)
2012-09-06 00:00:00
SuSE 11.2 Security Update : Mono (SAT Patch Number 6543)
2013-01-25 00:00:00
cve
cve
CVE-2012-3382
2012-07-12 21:55:00
debiancve
debiancve
CVE-2012-3382
2012-07-12 21:55:00
securityvulns
securityvulns
[SECURITY] [DSA 2512-1] mono security update
2012-07-16 00:00:00
[ MDVSA-2012:140 ] mono
2012-09-03 00:00:00
ubuntu
ubuntu
Mono vulnerabilities
2012-07-25 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related for OSV:DSA-2512-1