|
Vulnerability Assessment & Network Security Forums |
|||||||||
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> Gentoo Local Security Checks >> [GLSA-200601-12] Trac: Cross-site scripting vulnerability Vulnerability Assessment Details
|
[GLSA-200601-12] Trac: Cross-site scripting vulnerability |
||
Trac: Cross-site scripting vulnerability Detailed Explanation for this Vulnerability Assessment The remote host is affected by the vulnerability described in GLSA-200601-12 (Trac: Cross-site scripting vulnerability) Christophe Truc discovered that Trac fails to properly sanitize input passed in the URL. Impact A remote attacker could exploit this to inject and execute malicious script code or to steal cookie-based authentication credentials, potentially compromising the victim's browser. Workaround There is no known workaround at this time. References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4305 http://projects.edgewall.com/trac/wiki/ChangeLog#a0.9.3 Solution: All Trac users should upgrade to the latest available version: # emerge --sync # emerge --ask --oneshot --verbose ">=www-apps/trac-0.9.3" Note: Users with the vhosts USE flag set should manually use webapp-config to finalize the update. Network Security Threat Level: Low Networks Security ID: Vulnerability Assessment Copyright: (C) 2006 Michel Arboi |
||
Cables, Connectors |
ALLEN BRADLEY 1494V-DS400 SER A DISCONNECT SWITCH 3PH 400AMP 600VAC STK 5039
$1220.00
Intel - Core i9-12900K Desktop Processor 16 (8P+8E) Cores up to 5.2 GHz Unloc...
$619.99
Intel - Core i7-12700K Desktop Processor 12 (8P+4E) Cores up to 5.0 GHz Unloc...
$419.99
Intel Xeon E5-2697A V4 2.6GHz CPU Processor 16-Core Socket LGA2011 SR2K1
$39.99
AMD Ryzen 9 5950X 16-core 32-thread Desktop Processor
$319.99
Intel Core i7-6700 3.40 GHz QUAD Core (4 Core) Desktop Processor 8MB LGA 1151
$59.99
Intel Core i5-8500 3 GHz 8 GT/s LGA 1151 Desktop CPU Processor SR3XE
$49.99
Intel Core i3-9100T Processor (3.1 GHz, 4 Cores, LGA 1151) -...
$30.00
Intel Core i5-12400 Desktop Processor With HeatSink
$140.00
Intel i7-8700 Coffee Lake 3.2GHz 6-Core Max Turbo 4.6GHz Processor
$48.79
|
||
No Discussions have been posted on this vulnerability. |