Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2010-0464
HistoryJan 29, 2010 - 6:30 p.m.

CVE-2010-0464

2010-01-2918:30:01
Debian Security Bug Tracker
security-tracker.debian.org
13

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

EPSS

0.004

Percentile

74.5%

JSON

Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests.

Related

debian 3
openvas 8
fedora 2
cvelist 1
nessus 2
securityvulns 2
nvd 1
prion 1
ubuntucve 1
cve 1
debian
debian
[Backports-security-announce] Security Update for roundcube
2010-02-17 14:48:07
[Backports-security-announce] Security Update for roundcube
2010-02-17 14:48:23
[Backports-security-announce] Security Update for roundcube
2010-02-17 14:48:07
openvas
openvas
Mandriva Update for roundcubemail MDVSA-2010:048 (roundcubemail)
2010-03-02 00:00:00
Mandriva Update for roundcubemail MDVSA-2010:048 (roundcubemail)
2010-03-02 00:00:00
Fedora Update for roundcubemail FEDORA-2010-1399
2010-03-02 00:00:00
fedora
fedora
[SECURITY] Fedora 12 Update: roundcubemail-0.3.1-2.fc12
2010-02-02 20:41:40
[SECURITY] Fedora 11 Update: roundcubemail-0.3.1-2.fc11
2010-02-02 20:42:57
cvelist
cvelist
CVE-2010-0464
2010-01-29 18:00:00
nessus
nessus
Fedora 12 : roundcubemail-0.3.1-2.fc12 (2010-1385)
2010-07-01 00:00:00
Fedora 11 : roundcubemail-0.3.1-2.fc11 (2010-1399)
2010-07-01 00:00:00
securityvulns
securityvulns
[ MDVSA-2010:048 ] roundcubemail
2010-02-25 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2010-02-25 00:00:00
nvd
nvd
CVE-2010-0464
2010-01-29 18:30:01
prion
prion
Cross site request forgery (csrf)
2010-01-29 18:30:00
ubuntucve
ubuntucve
CVE-2010-0464
2010-01-29 00:00:00
cve
cve
CVE-2010-0464
2010-01-29 18:30:01

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

EPSS

0.004

Percentile

74.5%

JSON
Related for DEBIANCVE:CVE-2010-0464
debian3openvas8fedora2cvelist1nessus2securityvulns2nvd1prion1ubuntucve1cve1