17 matches found
openSUSE Security Update : FastCGI (openSUSE-2011-102)
added FastCGI-fixdeprecatedapi.patch: bnc735882 Fixes an issue where CGI.pm received CGI variables from previous requests. CVE-2011-2766 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
openSUSE Security Update : FastCGI (openSUSE-SU-2012:0004-1)
This update fixes the following security issues : - 735882: FastCGI: bypass authentication CVE-2011-2766 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update FastCGI-5575. The text description of...
openSUSE Security Update : FastCGI (openSUSE-SU-2012:0004-1)
This update fixes the following security issues : - 735882: FastCGI: bypass authentication CVE-2011-2766 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update FastCGI-5575. The text description of...
Amazon Linux AMI : perl-FCGI (ALAS-2011-05)
The MITRE CVE database describes CVE-2011-2766 as : The FCGI aka Fast CGI module 0.70 through 0.73 for Perl, as used by CGI::Fast, uses environment variable values from one request during processing of a later request, which allows remote attackers to bypass authentication via crafted HTTP header...
Fedora Update for perl-FCGI FEDORA-2011-13130
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Mandriva Update for fcgi MDVSA-2012:001 (fcgi)
Check for the Version of fcgi OpenVAS Vulnerability Test Mandriva Update for fcgi MDVSA-2012:001 fcgi Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
Mandriva Update for fcgi MDVSA-2012:001 (fcgi)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Mandriva Linux Security Advisory : fcgi (MDVSA-2012:001)
A vulnerability has been found and corrected in fcgi : The FCGI aka Fast CGI module 0.70 through 0.73 for Perl, as used by CGI::Fast, uses environment variable values from one request during processing of a later request, which allows remote attackers to bypass authentication via crafted HTTP...
Medium: perl-FCGI
Issue Overview: The FCGI aka Fast CGI module 0.70 through 0.73 for Perl, as used by CGI::Fast, uses environment variable values from one request during processing of a later request, which allows remote attackers to bypass authentication via crafted HTTP headers. Affected Packages: perl-FCGI Issu...
Fedora Update for perl-FCGI FEDORA-2011-13230
Check for the Version of perl-FCGI OpenVAS Vulnerability Test Fedora Update for perl-FCGI FEDORA-2011-13230 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
Fedora Update for perl-FCGI FEDORA-2011-13236
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for perl-FCGI FEDORA-2011-13230
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora 16 : perl-FCGI-0.74-1.fc16 (2011-13130)
This update to the latest upstream version resolves CVE-2011-2766 - stop leaking information across requests when using the deprecated and undocumented old FCGI interface. This update resolves CVE-2011-2766. Note that Tenable Network Security has extracted the preceding description block directly...
Fedora 15 : perl-FCGI-0.74-1.fc15 (2011-13230)
This update to the latest upstream version resolves CVE-2011-2766 - stop leaking information across requests when using the deprecated and undocumented old FCGI interface. This update resolves CVE-2011-2766 and includes several additional fixes. See the upstream changelog for further details. Not...
Fedora 14 : perl-FCGI-0.74-1.fc14 (2011-13236)
This update to the latest upstream version resolves CVE-2011-2766 - stop leaking information across requests when using the deprecated and undocumented old FCGI interface. This update resolves CVE-2011-2766 and includes several additional fixes. See the upstream changelog for further details. Not...
CVE-2011-2766
The FCGI aka Fast CGI module 0.70 through 0.73 for Perl, as used by CGI::Fast, uses environment variable values from one request during processing of a later request, which allows remote attackers to bypass authentication via crafted HTTP headers...
CVE-2011-2766
CVE-2011-2766 affects the Perl FastCGI module (FCGI) versions 0.70–0.73 used with CGI::Fast. The root cause is that environment variable values from one request can bleed into processing of a subsequent request, enabling remote attackers to bypass authentication by crafting HTTP headers. The issu...