Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.30 views

RHEL 3 : perl-libwww-perl (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 3 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - perl-libwww-perl: multiple HTTP client download filename vulnerability OCERT 2010-001 CVE-2010-2253 Note that Nessu...

6.8CVSS6.6AI score0.03287EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.15 views

RHEL 4 : perl-libwww-perl (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 4 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - perl-libwww-perl: multiple HTTP client download filename vulnerability OCERT 2010-001 CVE-2010-2253 -...

6.8CVSS7AI score0.04246EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/09/29 12:0 a.m.20 views

Gentoo Security Advisory GLSA 201402-04

Gentoo Linux Local Security Checks GLSA 201402-04 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

6.8CVSS5AI score0.04246EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2010/12/02 12:0 a.m.16 views

Fedora Update for perl-libwww-perl FEDORA-2010-15405

Check for the Version of perl-libwww-perl OpenVAS Vulnerability Test Fedora Update for perl-libwww-perl FEDORA-2010-15405 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

6.8CVSS6.4AI score0.03287EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2010/11/16 12:0 a.m.19 views

Fedora Update for perl-libwww-perl FEDORA-2010-15532

Check for the Version of perl-libwww-perl OpenVAS Vulnerability Test Fedora Update for perl-libwww-perl FEDORA-2010-15532 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

6.8CVSS6.4AI score0.03287EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2010/11/03 12:0 a.m.18 views

Fedora 14 : perl-libwww-perl-5.837-2.fc14 (2010-15405)

Fix broken package dependencies CVE-2010-2253 lwp-download now needs the -s option to honor the Content-Disposition header CVE-2010-2253 lwp-download now needs the -s option to honor the Content-Disposition header Note that Tenable Network Security has extracted the preceding description block...

6.8CVSS5.3AI score0.03287EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2010/11/03 12:0 a.m.27 views

Fedora 13 : perl-libwww-perl-5.837-2.fc13 (2010-15532)

Fix broken package dependencies CVE-2010-2253 lwp-download now needs the -s option to honor the Content-Disposition header CVE-2010-2253 lwp-download now needs the -s option to honor the Content-Disposition header Note that Tenable Network Security has extracted the preceding description block...

6.8CVSS5.3AI score0.03287EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2010/10/10 12:0 a.m.16 views

FreeBSD Ports: p5-libwww

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2010 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

6.8CVSS6.3AI score0.03287EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2010/09/07 12:0 a.m.33 views

Mandriva Update for perl-libwww-perl MDVSA-2010:167 (perl-libwww-perl)

Check for the Version of perl-libwww-perl OpenVAS Vulnerability Test Mandriva Update for perl-libwww-perl MDVSA-2010:167 perl-libwww-perl Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribu...

6.8CVSS0.2AI score0.03287EPSS
Exploits0References2
OSV
OSV
added 2010/07/06 5:17 p.m.4 views

CVE-2010-2253

lwp-download in libwww-perl before 5.835 does not reject downloads to filenames that begin with a . dot character, which allows remote servers to create or overwrite files via 1 a 3xx redirect to a URL with a crafted filename or 2 a Content-Disposition header that suggests a crafted filename, and...

7.2AI score
Exploits0References10
CVE
CVE
added 2010/07/06 2:0 p.m.63 views

CVE-2010-2253

CVE-2010-2253 affects libwww-perl’s lwp-download in versions before 5.835. A crafted filename via 3xx redirects or Content-Disposition can cause remote servers to create/overwrite dotfiles (e.g., in a home directory), potentially leading to arbitrary code execution. Affected component: lwp-downlo...

6.8CVSS7.3AI score0.03287EPSS
Exploits0References10Affected Software2
Debian CVE
Debian CVE
added 2010/07/06 2:0 p.m.26 views

CVE-2010-2253

lwp-download in libwww-perl before 5.835 does not reject downloads to filenames that begin with a . dot character, which allows remote servers to create or overwrite files via 1 a 3xx redirect to a URL with a crafted filename or 2 a Content-Disposition header that suggests a crafted filename, and...

6.8CVSS7.3AI score0.03287EPSS
Exploits0
Rows per page
Query Builder