ViewVC UTF-7 Encoded XSS

2006-10-15T08:03:43
ID OSVDB:29738
Type osvdb
Reporter OSVDB
Modified 2006-10-15T08:03:43

Description

Solution Description

Upgrade to version 1.0.3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor URL: http://www.viewvc.org/ Secunia Advisory ID:22395 Other Advisory URL: http://www.hardened-php.net/advisory_102006.134.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-10/0262.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-03/0375.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-03/0377.html ISS X-Force ID: 29576 CVE-2006-5442 Bugtraq ID: 20543