CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
70.6%
Graham Dumpleton discovered an information disclosure in the
“publisher” handle of mod_python. By requesting a carefully crafted
URL for a published module page, anybody can obtain extra information
about internal variables, objects, and other information which is not
intended to be visible.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 4.10 | noarch | libapache2-mod-python2.3 | < * | UNKNOWN |
Ubuntu | 4.10 | noarch | libapache2-mod-python2.2 | < * | UNKNOWN |