Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2011-0537HistoryFeb 04, 2011 - 1:00 a.m.
CVE-2011-0537
2011-02-0401:00:07
Debian Security Bug Tracker
security-tracker.debian.org
16
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.018
Percentile
88.1%
Multiple directory traversal vulnerabilities in (1) languages/Language.php and (2) includes/StubObject.php in MediaWiki 1.8.0 and other versions before 1.16.2, when running on Windows and possibly Novell Netware, allow remote attackers to include and execute arbitrary local PHP files via vectors related to a crafted language file and the Language::factory function.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | mediawiki | < 1:1.39.7-1~deb12u1 | mediawiki_1:1.39.7-1~deb12u1_all.deb |
| Debian | 11 | all | mediawiki | < 1:1.35.13-1+deb11u2 | mediawiki_1:1.35.13-1+deb11u2_all.deb |
| Debian | 999 | all | mediawiki | < 1:1.39.8-1 | mediawiki_1:1.39.8-1_all.deb |
| Debian | 13 | all | mediawiki | < 1:1.39.8-1 | mediawiki_1:1.39.8-1_all.deb |
Related
nvd
nvd
CVE-2011-0537
2011-02-04 01:00:07
ubuntucve
ubuntucve
CVE-2011-0537
2011-02-04 00:00:00
cvelist
cvelist
CVE-2011-0537
2011-02-04 00:00:00
cve
cve
CVE-2011-0537
2011-02-04 01:00:07
prion
prion
Directory traversal
2011-02-04 01:00:00
nessus
nessus
GLSA-201206-09 : MediaWiki: Multiple vulnerabilities
2012-06-22 00:00:00
gentoo
gentoo
MediaWiki: Multiple vulnerabilities
2012-06-21 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 201206-09 (MediaWiki)
2012-08-10 00:00:00
Gentoo Security Advisory GLSA 201206-09 (MediaWiki)
2012-08-10 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.018
Percentile
88.1%
Related for DEBIANCVE:CVE-2011-0537