Zope 'standard_error_message' Cross-Site Scripting Vulnerability

Bugtraq ID: 37765
Class: Input Validation Error
CVE: CVE-2010-1104
CVE-2011-4924
Remote: Yes
Local: No
Published: Jan 12 2010 12:00AM
Updated: Mar 08 2012 12:30PM
Credit: The Plone team
Vulnerable: Zope Zope 3.4.1
Zope Zope 3.3.3
Zope Zope 3.2.4
Zope Zope 3.1.1
Zope Zope 2.12.20
Zope Zope 2.12.3
Zope Zope 2.11.7
Zope Zope 2.11.6
Zope Zope 2.11.5
Zope Zope 2.11.4
Zope Zope 2.11.2
Zope Zope 2.10.12
Zope Zope 2.10.11
Zope Zope 2.10.10
Zope Zope 2.10.9
Zope Zope 2.10.7
Zope Zope 2.10.6
Zope Zope 2.10.5
Zope Zope 2.10.4
Zope Zope 2.10.2
Zope Zope 2.10.1
Zope Zope 2.9.12
Zope Zope 2.9.11
Zope Zope 2.9.3
Zope Zope 2.9.2
Zope Zope 2.9.1
Zope Zope 2.9
Zope Zope 2.8.12
Zope Zope 2.8.11
Zope Zope 2.8.8
Zope Zope 2.8.7
Zope Zope 2.8.6
Zope Zope 2.8.5
Zope Zope 2.8.4
Zope Zope 2.8.3
Zope Zope 2.8.2
Zope Zope 2.8.1
Zope Zope 2.7.8
Zope Zope 2.7.7
Zope Zope 2.7.6
Zope Zope 2.7.5
Zope Zope 2.7.4
Zope Zope 2.7.3
Zope Zope 2.7.2
Zope Zope 2.7.1
Zope Zope 2.7 .0 BETA4
Zope Zope 2.7 .0 BETA3
Zope Zope 2.7 .0 BETA2
Zope Zope 2.7 .0 BETA1
Zope Zope 2.6.3
Zope Zope 2.6.2
Zope Zope 2.6.1
Zope Zope 2.6 .0b1
Zope Zope 2.5.1 b1
Zope Zope 2.5.1
+ Gentoo Linux 1.4 _rc1
+ Gentoo Linux 1.2
Zope Zope 2.5 .0
Zope Zope 2.4.4 b1
Zope Zope 2.4.3
Zope Zope 2.4.2
Zope Zope 2.4.1
Zope Zope 2.4 .0
Zope Zope 2.3.3
Zope Zope 2.3.2
Zope Zope 2.3.1
Zope Zope 2.3 .0
Zope Zope 2.2.5
- RedHat Linux 7.1 i386
- RedHat Linux 7.1 alpha
- RedHat Linux 7.0 i386
- RedHat Linux 7.0 alpha
Zope Zope 2.2.4
+ Debian Linux 2.2 sparc
+ Debian Linux 2.2 powerpc
+ Debian Linux 2.2 arm
+ Debian Linux 2.2 alpha
+ Debian Linux 2.2 68k
+ Debian Linux 2.2
+ MandrakeSoft Corporate Server 1.0.1
+ Mandriva Linux Mandrake 7.2
+ Mandriva Linux Mandrake 7.1
+ RedHat Linux 7.0 sparc
+ RedHat Linux 7.0 i386
+ RedHat Linux 7.0 alpha
+ RedHat Linux 6.2 sparc
+ RedHat Linux 6.2 i386
+ RedHat Linux 6.2 alpha
+ RedHat Linux 6.1 sparc
+ RedHat Linux 6.1 i386
+ RedHat Linux 6.1 alpha
Zope Zope 2.2.3
Zope Zope 2.2.2
Zope Zope 2.2.1
Zope Zope 2.2 .0
Zope Zope 2.2 beta1
Zope Zope 2.2
Zope Zope 2.1.7
Zope Zope 2.1.1
Zope Zope 2.1 .x
- Debian Linux 2.2 sparc
- Debian Linux 2.2 powerpc
- Debian Linux 2.2 arm
- Debian Linux 2.2 alpha
- Debian Linux 2.2
+ RedHat PowerTools 6.2
+ RedHat PowerTools 6.1
Zope Zope 1.10.3
Zope Zope 2.13.9
Zope Zope 2.13.8
Zope Zope 2.13.6
Zope Zope 2.13.10
Zope Zope 2.13
Zope Zope 2.12.19
Zope Zope 2.12
Zope Zope 2.11.8
RedHat Enterprise Linux Clustering 5 server
Plone Plone 3.3.3
Oracle Enterprise Linux 5
Not Vulnerable: Zope Zope 3.7.3
Zope Zope 2.12.22
Zope Zope 2.13.12
Plone Plone 3.3.4


 

Privacy Statement
Copyright 2010, SecurityFocus