Shibboleth Redirection URL HTML Injection Vulnerability

Bugtraq ID: 37241
Class: Input Validation Error
CVE: CVE-2009-3300
Remote: Yes
Local: No
Published: Dec 07 2009 12:00AM
Updated: Jul 26 2010 10:05PM
Credit: Matt Elder
Vulnerable: Shibbolet Shibbolet 2.2
Shibbolet Shibbolet 2.1
Shibbolet Shibbolet 2.0
Shibbolet Shibbolet 1.3
Shibbolet Shibbolet 1.2
Shibbolet Shibbolet 1.1
Shibbolet Shibbolet 1.0
Debian Linux 5.0 sparc
Debian Linux 5.0 s/390
Debian Linux 5.0 powerpc
Debian Linux 5.0 mipsel
Debian Linux 5.0 mips
Debian Linux 5.0 m68k
Debian Linux 5.0 ia-64
Debian Linux 5.0 ia-32
Debian Linux 5.0 hppa
Debian Linux 5.0 armel
Debian Linux 5.0 arm
Debian Linux 5.0 amd64
Debian Linux 5.0 alpha
Debian Linux 5.0
Debian Linux 4.0 sparc
Debian Linux 4.0 s/390
Debian Linux 4.0 powerpc
Debian Linux 4.0 mipsel
Debian Linux 4.0 mips
Debian Linux 4.0 m68k
Debian Linux 4.0 ia-64
Debian Linux 4.0 ia-32
Debian Linux 4.0 hppa
Debian Linux 4.0 armel
Debian Linux 4.0 arm
Debian Linux 4.0 amd64
Debian Linux 4.0 alpha
Debian Linux 4.0
Not Vulnerable: Shibbolet Shibbolet 1.3.5
Shibbolet Shibbolet 2.3


 

Privacy Statement
Copyright 2010, SecurityFocus