Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-3587

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2011-3587
Last Modified 20 Oct 2011 10:56:06
Published 10 Oct 2011 06:55:06
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-3587

Summary

Unspecified vulnerability in Zope 2.12.x and 2.13.x, as used in Plone 4.0.x through 4.0.9, 4.1, and 4.2 through 4.2a2, allows remote attackers to execute arbitrary commands via vectors related to the p_ class in OFS/misc_.py and the use of Python modules.

Vulnerable Systems

Application

  • Plone 4.0

  • Plone 4.0.1

  • Plone 4.0.2

  • Plone 4.0.3

  • Plone 4.0.4

  • Plone 4.0.5

  • Plone 4.0.6.1

  • Plone 4.0.7

  • Plone 4.0.8

  • Plone 4.0.9

  • Plone 4.1

  • Plone 4.2

  • Plone 4.2a1

  • Plone 4.2a2

  • Zope 2.12.0

  • Zope 2.12.1

  • Zope 2.12.10

  • Zope 2.12.11

  • Zope 2.12.12

  • Zope 2.12.13

  • Zope 2.12.14

  • Zope 2.12.15

  • Zope 2.12.16

  • Zope 2.12.17

  • Zope 2.12.18

  • Zope 2.12.19

  • Zope 2.12.2

  • Zope 2.12.20

  • Zope 2.12.3

  • Zope 2.12.4

  • Zope 2.12.5

  • Zope 2.12.6

  • Zope 2.12.7

  • Zope 2.12.8

  • Zope 2.12.9

  • Zope 2.13.0

  • Zope 2.13.1

  • Zope 2.13.10

  • Zope 2.13.2

  • Zope 2.13.3

  • Zope 2.13.4

  • Zope 2.13.5

  • Zope 2.13.6

  • Zope 2.13.7

  • Zope 2.13.8

  • Zope 2.13.9


References

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=742297

CONFIRM - http://zope2.zope.org/news/security-vulnerability-announcement-cve-2011-3587

CONFIRM - http://pypi.python.org/pypi/Products.PloneHotfix20110928/1.0

CONFIRM - http://plone.org/products/plone/security/advisories/20110928

CONFIRM - http://plone.org/products/plone-hotfix/releases/20110928/PloneHotfix20110928-1.0.zip

CONFIRM - http://plone.org/products/plone-hotfix/releases/20110928

SECUNIA - 46323

SECUNIA - 46221


Last Updated: 27 May 2016 10:57:44