Lucene search
RootSSV:61368HistoryJan 22, 2014 - 12:00 a.m.
Tntnet HTTP报文头泄露漏洞
2014-01-2200:00:00
Root
www.seebug.org
6
0.006 Low
EPSS
Percentile
79.3%
BUGTRAQ ID: 65025
CVE(CAN) ID: CVE-2013-7299
Tntnet 是一个Web应用服务器,可使用C++来编写Web应用。
Tntnet 2.2及其他版本处理HTTP报文头时出错,这可使远程攻击者劫持有效用户会话。攻击者通过发送特制的HTTP请求,该请求附加了之前请求的报文头,则可通过HTTP身份验证配置,劫持用户账户,获取权限。
0
TNTNET tntnet
厂商补丁:
TNTNET
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
Related
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0072)
2022-01-28 00:00:00
Fedora Update for tntnet FEDORA-2014-1619
2014-02-05 00:00:00
Fedora Update for tntnet FEDORA-2014-1619
2014-02-05 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: tntnet-2.2.1-2.fc20
2014-02-05 03:37:30
debiancve
debiancve
CVE-2013-7299
2014-01-26 20:55:06
mageia
mageia
Updated tntnet packages fix security vulnerability
2014-02-16 16:59:00
nessus
nessus
Fedora 20 : tntnet-2.2.1-2.fc20 (2014-1619)
2014-02-05 00:00:00
cve
cve
CVE-2013-7299
2014-01-26 20:55:06
cvelist
cvelist
CVE-2013-7299
2014-01-26 20:00:00
nvd
nvd
CVE-2013-7299
2014-01-26 20:55:06
ubuntucve
ubuntucve
CVE-2013-7299
2014-01-26 00:00:00
prion
prion
Information disclosure
2014-01-26 20:55:00