Lucene search
RedHatRHSA-2005:104HistoryFeb 10, 2005 - 12:00 a.m.
(RHSA-2005:104) mod_python security update
2005-02-1000:00:00
access.redhat.com
13
EPSS
0.003
Percentile
70.6%
Mod_python is a module that embeds the Python language interpreter within
the Apache web server, allowing handlers to be written in Python.
Graham Dumpleton discovered a flaw affecting the publisher handler of
mod_python, used to make objects inside modules callable via URL.
A remote user could visit a carefully crafted URL that would gain access to
objects that should not be visible, leading to an information leak. The
Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned
the name CAN-2005-0088 to this issue.
Users of mod_python are advised to upgrade to this updated package,
which contains a backported patch to correct this issue.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | any | ppc | mod_python | < 3.0.3-5.ent | mod_python-3.0.3-5.ent.ppc.rpm |
| RedHat | any | s390 | mod_python | < 3.0.3-5.ent | mod_python-3.0.3-5.ent.s390.rpm |
| RedHat | any | x86_64 | mod_python | < 3.0.3-5.ent | mod_python-3.0.3-5.ent.x86_64.rpm |
| RedHat | any | s390x | mod_python | < 3.0.3-5.ent | mod_python-3.0.3-5.ent.s390x.rpm |
| RedHat | any | i386 | mod_python | < 3.0.3-5.ent | mod_python-3.0.3-5.ent.i386.rpm |
| RedHat | any | i386 | mod_python | < 2.7.8-3.1 | mod_python-2.7.8-3.1.i386.rpm |
| RedHat | any | ia64 | mod_python | < 2.7.8-3.1 | mod_python-2.7.8-3.1.ia64.rpm |
| RedHat | any | ia64 | mod_python | < 3.0.3-5.ent | mod_python-3.0.3-5.ent.ia64.rpm |
Related
openvas
openvas
Gentoo Security Advisory GLSA 200502-14 (mod_python)
2008-09-24 00:00:00
SLES9: Security update for apache2-mod_python
2009-10-10 00:00:00
Debian Security Advisory DSA 689-1 (libapache-mod-python)
2008-01-17 00:00:00
nessus
nessus
RHEL 2.1 / 3 : mod_python (RHSA-2005:104)
2005-02-10 00:00:00
Debian DSA-689-1 : libapache-mod-python - missing input sanitizing
2005-02-23 00:00:00
Fedora Core 3 : mod_python-3.1.3-5.2 (2005-140)
2005-02-10 00:00:00
ubuntu
ubuntu
mod_python vulnerability
2005-02-11 00:00:00
redhat
redhat
(RHSA-2005:100) mod_python security update
2005-02-15 00:00:00
ubuntucve
ubuntucve
CVE-2005-0088
2005-05-02 00:00:00
cvelist
cvelist
CVE-2005-0088
2005-02-10 05:00:00
nvd
nvd
CVE-2005-0088
2005-05-02 04:00:00
debian
debian
[SECURITY] [DSA 689-1] New mod_python packages fix information leak
2005-02-23 13:31:17
[SECURITY] [DSA 689-1] New mod_python packages fix information leak
2005-02-23 13:31:17
freebsd
freebsd
mod_python -- information leakage vulnerability
2005-01-30 00:00:00
osv
osv
libapache-mod-python - missing input sanitising
2005-02-23 00:00:00
gentoo
gentoo
mod_python: Publisher Handler vulnerability
2005-02-13 00:00:00
cve
cve
CVE-2005-0088
2005-05-02 04:00:00
debiancve
debiancve
CVE-2005-0088
2005-05-02 04:00:00
cert
cert
mod_python vulnerable to information disclosure via crafted URL
2005-02-21 00:00:00