Lucene search
RedHatRHSA-2011:0394HistoryMar 28, 2011 - 12:00 a.m.
(RHSA-2011:0394) Important: conga security update
2011-03-2800:00:00
access.redhat.com
13
0.019 Low
EPSS
Percentile
88.6%
The conga packages provide a web-based administration tool for remote
cluster and storage management.
A privilege escalation flaw was found in luci, the Conga web-based
administration application. A remote attacker could possibly use this flaw
to obtain administrative access, allowing them to read, create, or modify
the content of the luci application. (CVE-2011-0720)
Users of Conga are advised to upgrade to these updated packages, which
contain a backported patch to resolve this issue. After installing the
updated packages, luci must be restarted (“service luci restart”) for the
update to take effect.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 5 | ia64 | ricci | < 0.12.2-24.el5_6.1 | ricci-0.12.2-24.el5_6.1.ia64.rpm |
| RedHat | 5 | ppc | ricci | < 0.12.2-24.el5_6.1 | ricci-0.12.2-24.el5_6.1.ppc.rpm |
| RedHat | 5 | x86_64 | ricci | < 0.12.2-24.el5_6.1 | ricci-0.12.2-24.el5_6.1.x86_64.rpm |
| RedHat | 5 | src | conga | < 0.12.2-24.el5_6.1 | conga-0.12.2-24.el5_6.1.src.rpm |
| RedHat | 5 | x86_64 | luci | < 0.12.2-24.el5_6.1 | luci-0.12.2-24.el5_6.1.x86_64.rpm |
| RedHat | 5 | ia64 | luci | < 0.12.2-24.el5_6.1 | luci-0.12.2-24.el5_6.1.ia64.rpm |
| RedHat | 5 | ppc | luci | < 0.12.2-24.el5_6.1 | luci-0.12.2-24.el5_6.1.ppc.rpm |
| RedHat | 5 | i386 | luci | < 0.12.2-24.el5_6.1 | luci-0.12.2-24.el5_6.1.i386.rpm |
| RedHat | 5 | i386 | ricci | < 0.12.2-24.el5_6.1 | ricci-0.12.2-24.el5_6.1.i386.rpm |
Related
nessus
nessus
Scientific Linux Security Update : conga on SL5.x i386/x86_64
2012-08-01 00:00:00
RHEL 5 : conga (RHSA-2011:0394)
2013-01-24 00:00:00
Plone Security Bypass
2011-04-25 00:00:00
cvelist
cvelist
CVE-2011-0720
2011-02-03 16:00:00
CVE-2011-2528
2011-07-19 20:00:00
nvd
nvd
CVE-2011-0720
2011-02-03 17:00:03
CVE-2011-2528
2011-07-19 20:55:01
cve
cve
CVE-2011-0720
2011-02-03 17:00:03
CVE-2011-2528
2011-07-19 20:55:01
openvas
openvas
FreeBSD Ports: plone
2011-03-05 00:00:00
FreeBSD Ports: plone
2011-03-05 00:00:00
CentOS Update for luci CESA-2011:0394 centos5 i386
2011-08-09 00:00:00
prion
prion
Sql injection
2011-02-03 17:00:00
Spoofing
2011-07-19 20:55:00
redhat
redhat
(RHSA-2011:0393) Important: conga security update
2011-03-28 00:00:00
oraclelinux
oraclelinux
conga security update
2011-03-28 00:00:00
centos
centos
luci, ricci security update
2011-04-20 16:13:40
osv
osv
PYSEC-2011-13
2011-02-03 17:00:00
High severity vulnerability that affects Plone and Zope2
2018-07-23 19:52:02
freebsd
freebsd
plone -- Remote Security Bypass
2011-02-02 00:00:00
github
github
Plone Privilege Escalation Vulnerability
2022-05-17 02:01:56
High severity vulnerability that affects Plone and Zope2
2018-07-23 19:52:02