First published: Tue Sep 19 2006(Updated: )
The docutils module in Zope (Zope2) 2.7.0 through 2.7.9 and 2.8.0 through 2.8.8 does not properly handle web pages with reStructuredText (reST) markup, which allows remote attackers to read arbitrary files via a csv_table directive, a different vulnerability than CVE-2006-3458.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Zope Zope | =2.8.0 | |
Zope Zope | =2.8.8 | |
Zope Zope | =2.7.0 | |
Zope Zope | =2.7.6 | |
Zope Zope | =2.7.5 | |
Zope Zope | =2.7.3 | |
Zope Zope | =2.8.5 | |
Zope Zope | =2.8.2 | |
Zope Zope | =2.8.6 | |
Zope Zope | =2.7.4 | |
Zope Zope | =2.7.9 | |
Zope Zope | =2.8.3 | |
Zope Zope | =2.7.1 | |
Zope Zope | =2.7.2 | |
Zope Zope | =2.8.1 | |
Zope Zope | =2.8.4 | |
Zope Zope | =2.7.8 | |
Zope Zope | =2.7.7 | |
Zope Zope | =2.8.7 | |
pip/zope2 | >=2.8.0<2.8.9 | 2.8.9 |
pip/zope2 | >=2.7.0<=2.7.9 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.