Lucene search
+L

47 matches found

Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.43 views

openSUSE Security Update : perl-CGI-Simple (openSUSE-SU-2011:0020-1)

A HTTP header injection attack was fixed in perl-CGI-Simple. CVE-2010-2761 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update perl-CGI-Simple-3785. The text...

4.3CVSS9.1AI score0.02713EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2011/12/09 12:0 a.m.29 views

RHEL 4 / 5 : perl (RHSA-2011:1797)

The remote Redhat Enterprise Linux 4 / 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:1797 advisory. - perl-CGI, perl-CGI-Simple: CVE-2010-2761 - hardcoded MIME boundary value for multipart content, CVE-2010-4410 - CRLF injection allowin...

7.5CVSS8.5AI score0.13526EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2011/12/08 6:56 p.m.7 views

perl-CGI-Simple: - hardcoded MIME boundary value for multipart content, CVE-2010-4410 - CRLF injection allowing HTTP response splitting

The multipartinit function in 1 CGI.pm before 3.50 and 2 Simple.pm in CGI::Simple 1.112 and earlier uses a hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, which allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks v...

4.3CVSS7.5AI score0.02713EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2011/05/05 12:0 a.m.38 views

openSUSE Security Update : perl-CGI-Simple (openSUSE-SU-2011:0083-1)

The following vulnerabilities have been fixed in perl-CGI-Simple: CVE-2010-4410 - crlf injection CVE-2010-4411 - incomplete fix for crlf injection %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Upda...

4.3CVSS8.1AI score0.02579EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2011/05/05 12:0 a.m.28 views

openSUSE Security Update : perl-CGI-Simple (openSUSE-SU-2011:0020-1)

A HTTP header injection attack was fixed in perl-CGI-Simple. CVE-2010-2761 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update perl-CGI-Simple-3785. The text...

4.3CVSS9.1AI score0.02713EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2011/01/31 12:0 a.m.27 views

Fedora Update for perl-CGI-Simple FEDORA-2011-0653

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

4.3CVSS9.4AI score0.02713EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2011/01/31 12:0 a.m.31 views

Fedora Update for perl-CGI-Simple FEDORA-2011-0631

Check for the Version of perl-CGI-Simple OpenVAS Vulnerability Test Fedora Update for perl-CGI-Simple FEDORA-2011-0631 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

4.3CVSS9.4AI score0.02713EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2011/01/31 12:0 a.m.24 views

Fedora Update for perl-CGI-Simple FEDORA-2011-0631

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

4.3CVSS9.4AI score0.02713EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2011/01/31 12:0 a.m.33 views

Fedora Update for perl-CGI-Simple FEDORA-2011-0653

Check for the Version of perl-CGI-Simple OpenVAS Vulnerability Test Fedora Update for perl-CGI-Simple FEDORA-2011-0653 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...

4.3CVSS9.4AI score0.02713EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2011/01/31 12:0 a.m.25 views

Fedora 13 : perl-CGI-Simple-1.113-1.fc13 (2011-0631)

Update to 1.113 and apply additional patch to resolve CVE-2010-4410. Fix boundary to use randomized value as opposed to hard-coded value. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

4.3CVSS8AI score0.02713EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2011/01/31 12:0 a.m.31 views

Fedora 14 : perl-CGI-Simple-1.113-1.fc14 (2011-0653)

Update to 1.113 and apply additional patch to resolve CVE-2010-4410. Fix boundary to use randomized value as opposed to hard-coded value. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

4.3CVSS8AI score0.02713EPSS
Exploits0References5
Fedora
Fedora
added 2011/01/30 7:48 p.m.38 views

[SECURITY] Fedora 13 Update: perl-CGI-Simple-1.113-1.fc13

Simple totally OO CGI interface that is CGI.pm compliant...

4.3CVSS2.9AI score0.02713EPSS
Exploits0
OpenVAS
OpenVAS
added 2010/12/28 12:0 a.m.34 views

Mandriva Update for perl-CGI-Simple MDVSA-2010:252 (perl-CGI-Simple)

Check for the Version of perl-CGI-Simple OpenVAS Vulnerability Test Mandriva Update for perl-CGI-Simple MDVSA-2010:252 perl-CGI-Simple Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute ...

4.3CVSS0.02713EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2010/12/28 12:0 a.m.27 views

Mandriva Update for perl-CGI-Simple MDVSA-2010:252 (perl-CGI-Simple)

Check for the Version of perl-CGI-Simple OpenVAS Vulnerability Test Mandriva Update for perl-CGI-Simple MDVSA-2010:252 perl-CGI-Simple Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute ...

4.3CVSS0.02713EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2010/12/23 12:0 a.m.33 views

Mandriva Update for perl-CGI-Simple MDVSA-2010:250 (perl-CGI-Simple)

Check for the Version of perl-CGI-Simple OpenVAS Vulnerability Test Mandriva Update for perl-CGI-Simple MDVSA-2010:250 perl-CGI-Simple Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute ...

4.3CVSS9.1AI score0.02713EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2010/12/23 12:0 a.m.38 views

Mandriva Update for perl-CGI-Simple MDVSA-2010:250 (perl-CGI-Simple)

Check for the Version of perl-CGI-Simple OpenVAS Vulnerability Test Mandriva Update for perl-CGI-Simple MDVSA-2010:250 perl-CGI-Simple Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute ...

4.3CVSS9.5AI score0.02713EPSS
Exploits0References2
securityvulns
securityvulns
added 2010/12/12 12:0 a.m.65 views

[ MDVSA-2010:250 ] perl-CGI-Simple

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2010:250 http://www.mandriva.com/security/ Package : perl-CGI-Simple Date : December 9, 2010 Affected: Corporate 4.0, Enterprise Server 5.0 Problem Description: A vulnerability was discovered and corrected in...

4.3CVSS9.1AI score0.02713EPSS
Exploits0
OSV
OSV
added 2010/12/06 8:13 p.m.7 views

CVE-2010-4410

CRLF injection vulnerability in the header function in 1 CGI.pm before 3.50 and 2 Simple.pm in CGI::Simple 1.112 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-whitespace characters preceded by newline...

6.8AI score
Exploits0References24
NVD
NVD
added 2010/12/06 8:13 p.m.26 views

CVE-2010-4410

CRLF injection vulnerability in the header function in 1 CGI.pm before 3.50 and 2 Simple.pm in CGI::Simple 1.112 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-whitespace characters preceded by newline...

4.3CVSS9AI score0.02045EPSS
Exploits0References24
NVD
NVD
added 2010/12/06 8:12 p.m.27 views

CVE-2010-2761

The multipartinit function in 1 CGI.pm before 3.50 and 2 Simple.pm in CGI::Simple 1.112 and earlier uses a hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, which allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks v...

4.3CVSS9.1AI score0.02713EPSS
Exploits0References35
Rows per page
Query Builder