Details

    • Type: Bugs
    • Status: Closed
    • Resolution: Fixed
    • Affects Version/s: 2.10
    • Fix Version/s: None
    • Component/s: ARI User Portal
    • Labels:
      None

      Description

      RCE Vulnerability and minor XSS Vulnerability reported by and primary fixes provided by Martin Tschirsich, details:

      http://seclists.org/fulldisclosure/2012/Mar/234

      Fixes provided for 2.6-2.10
      [13870] [13871] [13872] [13873] [13874] [13876] [13877] [13878] [13879] [13880]

        Attachments

          Activity

          There are no comments yet on this issue.

            People

            • Assignee:
              Unassigned
              Reporter:
              p_lindheimer Philippe Lindheimer
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: