9 matches found
FreeBSD Ports: typo3
The remote host is missing an update to the system as announced in the referenced advisory. VID 653606e9-f6ac-11dd-94d9-0030843d3802 OpenVAS Vulnerability Test $ Description: Auto generated from VID 653606e9-f6ac-11dd-94d9-0030843d3802 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
FreeBSD Ports: typo3
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Debian: Security Advisory (DSA-1711-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 1711-1] New TYPO3 packages fix remote code execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1711-1 [email protected] http://www.debian.org/security/ Nico Golde January 26, 2009 http://www.debian.org/security/faq -...
Debian DSA-1711-1 : typo3-src - several vulnerabilities
Several remotely exploitable vulnerabilities have been discovered in the TYPO3 web content management framework. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-0255 Chris John Riley discovered that the TYPO3-wide used encryption key is generated wi...
[SECURITY] [DSA 1711-1] New TYPO3 packages fix remote code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1711-1 [email protected] http://www.debian.org/security/ Nico Golde January 26, 2009 http://www.debian.org/security/faq -...
DSA-1711-1 typo3-src - remote code execution
Bulletin has no description...
CVE-2009-0256
Session fixation vulnerability in the authentication library in TYPO3 4.0.0 through 4.0.9, 4.1.0 through 4.1.7, and 4.2.0 through 4.2.3 allows remote attackers to hijack web sessions via unspecified vectors related to 1 frontend and 2 backend authentication...
CVE-2009-0256
CVE-2009-0256 affects TYPO3’s authentication library in TYPO3 4.0.0–4.0.9, 4.1.0–4.1.7, and 4.2.0–4.2.3. The issue is a session fixation flaw in the authentication library that can allow remote attackers to hijack web sessions via frontend and backend authentication; vectors are unspecified in th...