Lucene search
RedhatCVELIST:CVE-2010-0005HistoryJan 29, 2010 - 6:00 p.m.
CVE-2010-0005
2010-01-2918:00:00
redhat
www.cve.org
6
query interface
viewvc
authorization bypass
query.py in the query interface in ViewVC before 1.1.3 does not reject configurations that specify an unsupported authorizer for a root, which might allow remote attackers to bypass intended access restrictions via a query.
References
lists.opensuse.org/opensuse-security-announce/2010-01/msg00009.html
viewvc.tigris.org/source/browse/viewvc/trunk/CHANGES?r1=2242&r2=2313&pathrev=HEAD
viewvc.tigris.org/source/browse/viewvc?view=rev&revision=2300
www.openwall.com/lists/oss-security/2010/01/11/2
www.openwall.com/lists/oss-security/2010/01/13/5
www.redhat.com/archives/fedora-package-announce/2009-December/msg01421.html
www.redhat.com/archives/fedora-package-announce/2009-December/msg01464.html
Related
debiancve
debiancve
CVE-2010-0005
2022-10-03 16:21:11
prion
prion
Design/Logic Flaw
2010-01-29 18:30:00
nvd
nvd
CVE-2010-0005
2010-01-29 18:30:01
cve
cve
CVE-2010-0005
2010-01-29 18:30:01
ubuntucve
ubuntucve
CVE-2010-0005
2010-01-29 00:00:00
openvas
openvas
ViewVC < 1.1.3 Multiple Remote Vulnerabilities
2010-01-04 00:00:00
ViewVC Versions Prior to 1.1.3 Multiple Remote Vulnerabilities
2010-01-04 00:00:00
SuSE Update for acroread SUSE-SA:2010:008
2010-01-29 00:00:00
nessus
nessus
Fedora 11 : viewvc-1.1.3-1.fc11 (2009-13634)
2009-12-29 00:00:00
openSUSE Security Update : viewvc (viewvc-1859)
2010-01-27 00:00:00
Fedora 12 : viewvc-1.1.3-1.fc12 (2009-13610)
2009-12-29 00:00:00
suse
suse
remote code execution in acroread
2010-01-26 16:40:23