|
Family: Ubuntu Local Security Checks --> Category: infos
USN80-1 : libapache2-mod-python vulnerabilities Vulnerability Scan
Vulnerability Scan Summary libapache2-mod-python vulnerabilities
Detailed Explanation for this Vulnerability Test
Synopsis :
These remote packages are missing security patches :
- libapache2-mod-python
- libapache2-mod-python-doc
- libapache2-mod-python2.2
- libapache2-mod-python2.3
Description :
Graham Dumpleton discovered an information disclosure in the
"publisher" handle of mod_python. By requesting a carefully crafted
URL for a published module page, anybody can obtain extra information
about internal variables, objects, and other information which is not
intended to be visible.
Solution :
Upgrade to :
- libapache2-mod-python-3.1.3-1ubuntu3.2 (Ubuntu 4.10)
- libapache2-mod-python-doc-3.1.3-1ubuntu3.2 (Ubuntu 4.10)
- libapache2-mod-python2.2-3.1.3-1ubuntu3.2 (Ubuntu 4.10)
- libapache2-mod-python2.3-3.1.3-1ubuntu3.2 (Ubuntu 4.10)
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|