CVE-2000-1211

CVE-2000-1211

EPSS 1.4%

Zope 2.2.0 through 2.2.4 does not properly perform security registration for legacy names of object constructors such as DTML method objects, which could allow attackers to perform unauthorized activities.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://www.iss.net/security_center/static/5824.php http://www.linux-mandrake.com/en/security/2000/MDKSA-2000-083.php3 http://www.osvdb.org/6282 http://www.redhat.com/support/errata/RHSA-2000-125.html http://www.zope.org/Products/Zope/Hotfix_2000-12-08/security_alert