47 matches found
openSUSE Security Update : perl-CGI-Simple (openSUSE-SU-2011:0020-1)
A HTTP header injection attack was fixed in perl-CGI-Simple. CVE-2010-2761 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update perl-CGI-Simple-3785. The text...
RHEL 4 / 5 : perl (RHSA-2011:1797)
The remote Redhat Enterprise Linux 4 / 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:1797 advisory. - perl-CGI, perl-CGI-Simple: CVE-2010-2761 - hardcoded MIME boundary value for multipart content, CVE-2010-4410 - CRLF injection allowin...
perl-CGI-Simple: - hardcoded MIME boundary value for multipart content, CVE-2010-4410 - CRLF injection allowing HTTP response splitting
The multipartinit function in 1 CGI.pm before 3.50 and 2 Simple.pm in CGI::Simple 1.112 and earlier uses a hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, which allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks v...
openSUSE Security Update : perl-CGI-Simple (openSUSE-SU-2011:0020-1)
A HTTP header injection attack was fixed in perl-CGI-Simple. CVE-2010-2761 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update perl-CGI-Simple-3785. The text...
openSUSE Security Update : perl-CGI-Simple (openSUSE-SU-2011:0083-1)
The following vulnerabilities have been fixed in perl-CGI-Simple: CVE-2010-4410 - crlf injection CVE-2010-4411 - incomplete fix for crlf injection %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Upda...
Fedora Update for perl-CGI-Simple FEDORA-2011-0631
Check for the Version of perl-CGI-Simple OpenVAS Vulnerability Test Fedora Update for perl-CGI-Simple FEDORA-2011-0631 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...
Fedora 13 : perl-CGI-Simple-1.113-1.fc13 (2011-0631)
Update to 1.113 and apply additional patch to resolve CVE-2010-4410. Fix boundary to use randomized value as opposed to hard-coded value. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...
Fedora Update for perl-CGI-Simple FEDORA-2011-0631
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for perl-CGI-Simple FEDORA-2011-0653
Check for the Version of perl-CGI-Simple OpenVAS Vulnerability Test Fedora Update for perl-CGI-Simple FEDORA-2011-0653 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify...
Fedora Update for perl-CGI-Simple FEDORA-2011-0653
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora 14 : perl-CGI-Simple-1.113-1.fc14 (2011-0653)
Update to 1.113 and apply additional patch to resolve CVE-2010-4410. Fix boundary to use randomized value as opposed to hard-coded value. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...
[SECURITY] Fedora 13 Update: perl-CGI-Simple-1.113-1.fc13
Simple totally OO CGI interface that is CGI.pm compliant...
Mandriva Update for perl-CGI-Simple MDVSA-2010:252 (perl-CGI-Simple)
Check for the Version of perl-CGI-Simple OpenVAS Vulnerability Test Mandriva Update for perl-CGI-Simple MDVSA-2010:252 perl-CGI-Simple Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute ...
Mandriva Update for perl-CGI-Simple MDVSA-2010:252 (perl-CGI-Simple)
Check for the Version of perl-CGI-Simple OpenVAS Vulnerability Test Mandriva Update for perl-CGI-Simple MDVSA-2010:252 perl-CGI-Simple Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute ...
Mandriva Update for perl-CGI-Simple MDVSA-2010:250 (perl-CGI-Simple)
Check for the Version of perl-CGI-Simple OpenVAS Vulnerability Test Mandriva Update for perl-CGI-Simple MDVSA-2010:250 perl-CGI-Simple Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute ...
Mandriva Update for perl-CGI-Simple MDVSA-2010:250 (perl-CGI-Simple)
Check for the Version of perl-CGI-Simple OpenVAS Vulnerability Test Mandriva Update for perl-CGI-Simple MDVSA-2010:250 perl-CGI-Simple Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute ...
[ MDVSA-2010:250 ] perl-CGI-Simple
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2010:250 http://www.mandriva.com/security/ Package : perl-CGI-Simple Date : December 9, 2010 Affected: Corporate 4.0, Enterprise Server 5.0 Problem Description: A vulnerability was discovered and corrected in...
CVE-2010-4410
CRLF injection vulnerability in the header function in 1 CGI.pm before 3.50 and 2 Simple.pm in CGI::Simple 1.112 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-whitespace characters preceded by newline...
CVE-2010-4410
CRLF injection vulnerability in the header function in 1 CGI.pm before 3.50 and 2 Simple.pm in CGI::Simple 1.112 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-whitespace characters preceded by newline...
CVE-2010-2761
The multipartinit function in 1 CGI.pm before 3.50 and 2 Simple.pm in CGI::Simple 1.112 and earlier uses a hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, which allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks v...