Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0088

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-0088
Last Modified 21 Aug 2010 12:25:28
Published 02 May 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-0088

Summary

The publisher handler for mod_python 2.7.8 and earlier allows remote attackers to obtain access to restricted objects via a crafted URL.

Vulnerable Systems

Application

  • Apache Mod Python 1.9a

  • Apache Mod Python 2.0

  • Apache Mod Python 2.1

  • Apache Mod Python 2.2

  • Apache Mod Python 2.3

  • Apache Mod Python 2.4

  • Apache Mod Python 2.4.1

  • Apache Mod Python 2.5

  • Apache Mod Python 2.6

  • Apache Mod Python 2.6.1

  • Apache Mod Python 2.6.2

  • Apache Mod Python 2.6.3

  • Apache Mod Python 2.6.4

  • Apache Mod Python 2.7

  • Apache Mod Python 2.7.1

  • Apache Mod Python 2.7.2

  • Apache Mod Python 2.7.3

  • Apache Mod Python 2.7.4

  • Apache Mod Python 2.7.5

  • Apache Mod Python 2.7.6

  • Apache Mod Python 2.7.7

  • Apache Mod Python 2.7.8


References

CERT-VN - VU#356409

DEBIAN - DSA-689

GENTOO - GLSA-200502-14

TRUSTIX - 2005-0003

BID - 12519

FEDORA - FLSA:152896

REDHAT - RHSA-2005:104

REDHAT - RHSA-2005:100

SECTRACK - 1013156

BUGTRAQ - 20050211 [USN-80-1] mod_python vulnerability

CONECTIVA - CLA-2005:926


Last Updated: 27 May 2016 10:39:40