CVE-2012-5649

CVE-2012-5649 affects Apache CouchDB up to vulnerable branches: 1.0.4, 1.1.x up to 1.1.2, and 1.2.x up to 1.2.1. The issue allows remote attackers to execute arbitrary code via a JSONP callback related to Adobe Flash. Mitigation: upgrade to fixed releases (1.0.4+, 1.1.2+, 1.2.1+). Open detail con...

Apache CouchDB < 1.0.4 / 1.1.2 / 1.2.1 Multiple Vulnerabilities

Binary data 800632.prm...

Fedora 18 : couchdb-1.2.1-2.fc18 (2013-1375)

Ver. 1.2.1 security bugfix release - Unbundle snappy see rhbz 871149 - Add isa to the Requires Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as...

Fedora Update for couchdb FEDORA-2013-1375

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CVE-2012-5649 Apache CouchDB JSONP arbitrary code execution with Adobe Flash

CVE-2012-5649 JSONP arbitrary code execution with Adobe Flash Severity: Moderate Vendor: The Apache Software Foundation Affected Versions: JSONP is supported but disabled by default in all currently supported releases of Apache CouchDB. Administrator access is required to enable it. Releases up t...