Lucene search

K
ubuntucveUbuntu.comUB:CVE-2010-0541
HistoryJun 17, 2010 - 12:00 a.m.

CVE-2010-0541

2010-06-1700:00:00
ubuntu.com
ubuntu.com
9

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

70.1%

Cross-site scripting (XSS) vulnerability in the WEBrick HTTP server in Ruby
in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, allows remote attackers
to inject arbitrary web script or HTML via a crafted URI that triggers a
UTF-7 error page.

Bugs

Notes

Author Note
tyhicks Fixed upstream in 1.8.7.302
OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchruby1.8< 1.8.7.249-2ubuntu0.1UNKNOWN
ubuntu10.10noarchruby1.8< 1.8.7.299-2ubuntu0.1UNKNOWN

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

70.1%

Related for UB:CVE-2010-0541