Lucene search
Ubuntu.comUB:CVE-2010-0464HistoryJan 29, 2010 - 12:00 a.m.
CVE-2010-0464
2010-01-2900:00:00
ubuntu.com
ubuntu.com
8
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.004
Percentile
74.5%
Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS
prefetching of domain names contained in e-mail messages, which makes it
easier for remote attackers to determine the network location of the
webmail user by logging DNS requests.
Related
debian
debian
[Backports-security-announce] Security Update for roundcube
2010-02-17 14:48:07
[Backports-security-announce] Security Update for roundcube
2010-02-17 14:48:23
[Backports-security-announce] Security Update for roundcube
2010-02-17 14:48:07
openvas
openvas
Mandriva Update for roundcubemail MDVSA-2010:048 (roundcubemail)
2010-03-02 00:00:00
Mandriva Update for roundcubemail MDVSA-2010:048 (roundcubemail)
2010-03-02 00:00:00
Fedora Update for roundcubemail FEDORA-2010-1399
2010-03-02 00:00:00
debiancve
debiancve
CVE-2010-0464
2010-01-29 18:30:01
fedora
fedora
[SECURITY] Fedora 12 Update: roundcubemail-0.3.1-2.fc12
2010-02-02 20:41:40
[SECURITY] Fedora 11 Update: roundcubemail-0.3.1-2.fc11
2010-02-02 20:42:57
cvelist
cvelist
CVE-2010-0464
2010-01-29 18:00:00
nessus
nessus
Fedora 12 : roundcubemail-0.3.1-2.fc12 (2010-1385)
2010-07-01 00:00:00
Fedora 11 : roundcubemail-0.3.1-2.fc11 (2010-1399)
2010-07-01 00:00:00
securityvulns
securityvulns
[ MDVSA-2010:048 ] roundcubemail
2010-02-25 00:00:00
nvd
nvd
CVE-2010-0464
2010-01-29 18:30:01
prion
prion
Cross site request forgery (csrf)
2010-01-29 18:30:00
cve
cve
CVE-2010-0464
2010-01-29 18:30:01
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.004
Percentile
74.5%
Related for UB:CVE-2010-0464