Nessus Plugin #15327
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
[DSA490] DSA-490-1 zope
- Family:
- Debian Local Security Checks
- Category:
- infos
- Copyright:
- This script is (C) 2004 Michel Arboi
- Summary:
- DSA-490-1 zope
- Version:
- $Revision: 1.4 $
- Cve_id:
- CVE-2002-0688
- Bugtraq_id:
- 5812
- Xrefs:
- DSA:490
- Description:
A vulnerability has been discovered in the index support of the
ZCatalog plug-in in Zope, an open source web application server. A
flaw in the security settings of ZCatalog allows anonymous users to
call arbitrary methods of catalog indexes. The vulnerability also
allows untrusted code to do the same.
For the stable distribution (woody) this problem has been fixed in
version 2.5.1-1woody1.
For the unstable distribution (sid) this problem has been fixed in
version 2.6.0-0.1 and higher.
We recommend that you upgrade your zope package.
Solution : http://www.debian.org/security/2004/dsa-490
Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.