Zope 'cmd' Parameter Remote Command Execution Vulnerability

Bugtraq ID: 49857
Class: Input Validation Error
CVE: CVE-2011-3587
Remote: Yes
Local: No
Published: Sep 29 2011 12:00AM
Updated: Dec 21 2011 11:19PM
Credit: Alan Hoey
Vulnerable: Zope Zope 2.13.9
Zope Zope 2.13.8
Zope Zope 2.13
Zope Zope 2.12.19
Zope Zope 2.12
Plone Plone 4.0.8
Plone Plone 4.0.7
Plone Plone 4.2a2
Plone Plone 4.2a1
Plone Plone 4.2
Plone Plone 4.1
Plone Plone 4.0.9
Plone Plone 4.0.5
Plone Plone 4.0.4
Plone Plone 4.0.3
Plone Plone 4.0.2
Plone Plone 4.0.1
Plone Plone 4.0
Not Vulnerable: Zope Zope 2.12.20
Zope Zope 2.13.10


 

Privacy Statement
Copyright 2010, SecurityFocus