4 matches found
[SECURITY] [DSA 910-1] New zope2.7 packages fix arbitrary file inclusion
-------------------------------------------------------------------------- Debian Security Advisory DSA 910-1 [email protected] http://www.debian.org/security/ Martin Schulze November 24th, 2005 http://www.debian.org/security/faq -...
CVE-2005-3323
docutils in Zope 2.6, 2.7 before 2.7.8, and 2.8 before 2.8.2 allows remote attackers to include arbitrary files via include directives in RestructuredText functionality...
CVE-2005-3323
docutils in Zope 2.6, 2.7 before 2.7.8, and 2.8 before 2.8.2 allows remote attackers to include arbitrary files via include directives in RestructuredText functionality...
CVE-2005-3323
CVE-2005-3323 affects docutils in Zope: Zope 2.6, Zope 2.7 before 2.7.8, and Zope 2.8 before 2.8.2 are vulnerable. The flaw allows remote attackers to include arbitrary files via include directives in RestructuredText functionality. Root cause: insecure handling of include directives in docutils ...