Lucene search
K

8 matches found

F5 Networks
F5 Networks
added 2023/02/21 6:34 p.m.42 views

K75004031: Python vulnerability CVE-2016-1000110

Security Advisory Description The CGIHandler class in Python before 2.7.12 does not protect against the HTTPPROXY variable name clash in a CGI script, which could allow a remote attacker to redirect HTTP requests. CVE-2016-1000110 Impact There is no impact; F5 products are not affected by this...

6.1CVSS7.4AI score0.04526EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/10/06 12:0 a.m.17 views

Python < 2.7.13, 3.3.x < 3.3.7, 3.4.x < 3.4.6, 3.5.x < 3.5.3 HTTPoxy attack (bpo-27568) - Windows

The CGIHandler class in Python is prone to redirection of HTTP requests. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.1CVSS6.6AI score0.04526EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/10/06 12:0 a.m.22 views

Python < 2.7.13, 3.3.x < 3.3.7, 3.4.x < 3.4.6, 3.5.x < 3.5.3 HTTPoxy attack (bpo-27568) - Mac OS X

The CGIHandler class in Python is prone to redirection of HTTP requests. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

6.1CVSS6.6AI score0.04526EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/05/01 12:0 a.m.51 views

EulerOS 2.0 SP1 : python (EulerOS-SA-2016-1036)

According to the versions of the python packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - It was discovered that the Python CGIHandler class did not properly protect against the HTTPPROXY variable name clash in a CGI context. A remote...

6.5CVSS7.2AI score0.14524EPSS
Exploits6References4
OpenVAS
OpenVAS
added 2016/10/26 12:0 a.m.35 views

Amazon Linux: Security Advisory (ALAS-2016-741)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS7AI score0.04526EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/04/20 12:0 a.m.33 views

Mandriva Linux Security Advisory : java-1.7.0-openjdk (MDVSA-2013:095)

Updated java-1.7.0-openjdk packages fix security vulnerabilities : Two improper permission check issues were discovered in the reflection API in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions CVE-2012-3174, CVE-2013-0422. Multiple improp...

10CVSS7.8AI score0.97612EPSS
Exploits57References30
Amazon
Amazon
added 2013/02/17 12:0 a.m.92 views

Important: java-1.6.0-openjdk

Issue Overview: Multiple improper permission check issues were discovered in the AWT, CORBA, JMX, and Libraries components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions. Multiple flaws were found in the way image parsers in the 2D an...

10CVSS8.8AI score0.08087EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2013/02/10 12:0 a.m.45 views

RHEL 6 : java-1.6.0-openjdk (RHSA-2013:0245)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2013:0245 advisory. These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJDK 6 Software Development Kit. Multiple improper permission check...

10CVSS8AI score0.08087EPSS
Exploits2References44
Rows per page
Query Builder