|
Family: Debian Local Security Checks --> Category: infos
[DSA910] DSA-910-1 zope.2.7 Vulnerability Scan
Vulnerability Scan Summary DSA-910-1 zope.2.7
Detailed Explanation for this Vulnerability Test
A vulnerability has been discovered in zope 2.7, an Open Source web
application server, that allows remote attackers to insert arbitrary
files via include directives in reStructuredText functionality.
The old stable distribution (woody) does not contain zope2.7 packages.
For the stable distribution (sarge) this problem has been fixed in
version 2.7.5-2sarge1.
For the unstable distribution (sid) this problem has been fixed in
version 2.7.8-1.
We recommend that you upgrade your zope2.7 package.
Solution : http://www.debian.org/security/2005/dsa-910
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|