Family: Debian Local Security Checks --> Category: infos
[DSA689] DSA-689-1 libapache-mod-python Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
Graham Dumpleton discovered a flaw which can affect anyone using the
publisher handle of the Apache Software Foundation's mod_python. The
publisher handle lets you publish objects inside modules to make them
callable via URL. The flaw allows a carefully crafted URL to obtain
extra information that should not be visible (information leak).
For the stable distribution (woody) this problem has been fixed in
For the unstable distribution (sid) this problem has been fixed in
version 2.7.10-4 of libapache-mod-python and in version 3.1.3-3 of
We recommend that you upgrade your libapache-mod-python package.
Solution : http://www.debian.org/security/2005/dsa-689
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.