Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2004/09/29 12:0 a.m.24 views

Debian DSA-055-1 : zope - remote unauthorized access

A new Zope hotfix has been released which fixes a problem in ZClasses. The README for the 2001-05-01 hotfix describes the problem as any user can visit a ZClass declaration and change the ZClass permission mappings for methods and other objects defined within the ZClass, possibly allowing for...

4.6CVSS5.3AI score0.0035EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2004/09/29 12:0 a.m.28 views

Debian DSA-043-1 : zope

This advisory covers several vulnerabilities in Zope that have been addressed.Hotfix 08092000 'Zope security alert and hotfix product' The issue involves the fact that the getRoles method of user objects contained in the default UserFolder implementation returns a mutable Python type. Because the...

2.1CVSS5.5AI score0.00408EPSS
Exploits0References3
Debian
Debian
added 2004/04/17 3:42 p.m.27 views

[SECURITY] [DSA 490-1] New Zope packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 490-1 [email protected] http://www.debian.org/security/ Martin Schulze April 17th, 2004 http://www.debian.org/security/faq -...

7.5CVSS6.5AI score0.01427EPSS
Exploits0
Debian
Debian
added 2000/12/20 12:30 p.m.18 views

[SECURITY] [DSA-007-1] insufficient protection for zope Image and File objects

Package : zope Problem type : insufficient protection Debian-specific: no A busy week for the Zope team: on Monday another security alert was released revealing a potential problem found by Peter Kelly. This problem involved incorrect protection of data updating for Image and File objects: any us...

5.8AI score
Exploits0
Rows per page
Query Builder