Kiwi Multiple Remote Code Execution, HTML Injection and Local File Inclusion Vulnerabilities

Bugtraq ID: 49236
Class: Input Validation Error
CVE: CVE-2011-2225
CVE-2011-2226
CVE-2011-2644
CVE-2011-2645
CVE-2011-2646
CVE-2011-2647
CVE-2011-2648
CVE-2011-2649
CVE-2011-2650
CVE-2011-2651
CVE-2011-2652
Remote: Yes
Local: No
Published: Aug 18 2011 12:00AM
Updated: Dec 16 2011 06:48PM
Credit: Reported in SuSE Linux security advisory.
Vulnerable: SuSE Studio Standard Edition 1.2
SuSE Studio Onsite 1.1
SuSE Studio Extension for System z 1.2
KIWI Image System KIWI Image System 0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus