← voltar
CVE-2012-2770

CVE-2012-2770

EPSS 1.4%
The Authen::ExternalAuth extension before 0.11 for Best Practical Solutions RT allows remote attackers to obtain a logged-in session via unspecified vectors related to the "URL of a RSS feed of the user."
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://lists.bestpractical.com/pipermail/rt-announce/2012-July/000208.htmlhttp://secunia.com/advisories/50060https://exchange.xforce.ibmcloud.com/vulnerabilities/77213http://www.securityfocus.com/bid/54681