Deplate elements.rb Malformed Filename ID Issue

2005-03-25T05:33:58
ID OSVDB:15082
Type osvdb
Reporter OSVDB
Modified 2005-03-25T05:33:58

Description

Vulnerability Description

Deplate contains a flaw related to the elements.rb script not sanitizing the IDs and filename creation. No further details have been provided.

Solution Description

Upgrade to version 0.7.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Deplate contains a flaw related to the elements.rb script not sanitizing the IDs and filename creation. No further details have been provided.

References:

Vendor URL: http://deplate.sourceforge.net/ Vendor Specific News/Changelog Entry: http://sourceforge.net/project/shownotes.php?release_id=315034 Security Tracker: 1013555 CVE-2005-0912