Details

    • Type: Bugs Bugs
    • Status: Closed (View Workflow)
    • Resolution: Fixed
    • Affects Version/s: 2.10
    • Fix Version/s: None
    • Component/s: ARI User Portal
    • Labels:
      None
    • Backend Engine:
      All
    • Confirmation:
      Unreviewed

      Description

      RCE Vulnerability and minor XSS Vulnerability reported by and primary fixes provided by Martin Tschirsich, details:

      http://seclists.org/fulldisclosure/2012/Mar/234

      Fixes provided for 2.6-2.10
      [13870] [13871] [13872] [13873] [13874] [13876] [13877] [13878] [13879] [13880]

        Activity

        There are no comments yet on this issue.

          People

          • Assignee:
            Unassigned
            Reporter:
            Philippe Lindheimer
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved:

              Development