RETIRED: eGroupWare '_bad_protocol_once()' HTML Security Bypass Vulnerability

Bugtraq ID: 28424
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: Mar 24 2008 12:00AM
Updated: Apr 03 2008 09:29PM
Credit: lukasz.pilorz
Vulnerable: eGroupWare eGroupWare 1.4.2
eGroupWare eGroupWare 1.4.1
eGroupWare eGroupWare 1.0.6
eGroupWare eGroupWare 1.0.3
eGroupWare eGroupWare 1.0.1
eGroupWare eGroupWare 1.0 .0.009
eGroupWare eGroupWare 1.0 .0.007
+ Debian Linux 3.1 sparc
+ Debian Linux 3.1 s/390
+ Debian Linux 3.1 ppc
+ Debian Linux 3.1 mipsel
+ Debian Linux 3.1 mips
+ Debian Linux 3.1 m68k
+ Debian Linux 3.1 ia-64
+ Debian Linux 3.1 ia-32
+ Debian Linux 3.1 hppa
+ Debian Linux 3.1 arm
+ Debian Linux 3.1 amd64
+ Debian Linux 3.1 alpha
+ Debian Linux 3.1
+ Gentoo Linux
eGroupWare eGroupWare 1.0
eGroupWare eGroupWare 1.2.107-2
eGroupWare eGroupWare 1.2.106-2
Not Vulnerable: eGroupWare eGroupWare 1.4.3


 

Privacy Statement
Copyright 2010, SecurityFocus