critical
10
CWE
20
Advisory Published
Updated

CVE-2010-4803: Input Validation

First published: Tue May 03 2011(Updated: )

Mojolicious before 0.999927 does not properly implement HMAC-MD5 checksums, which has unspecified impact and remote attack vectors.

Credit: cve@mitre.org

Affected SoftwareAffected VersionHow to fix
Mojolicious<=0.999926
Mojolicious=0.2
Mojolicious=0.3
Mojolicious=0.4
Mojolicious=0.5
Mojolicious=0.6
Mojolicious=0.7
Mojolicious=0.8
Mojolicious=0.8.1
Mojolicious=0.8.2
Mojolicious=0.8.3
Mojolicious=0.8.4
Mojolicious=0.8.5
Mojolicious=0.9
Mojolicious=0.8006
Mojolicious=0.8007
Mojolicious=0.8008
Mojolicious=0.8009
Mojolicious=0.9001
Mojolicious=0.9002
Mojolicious=0.991231
Mojolicious=0.991232
Mojolicious=0.991233
Mojolicious=0.991234
Mojolicious=0.991235
Mojolicious=0.991236
Mojolicious=0.991237
Mojolicious=0.991238
Mojolicious=0.991239
Mojolicious=0.991240
Mojolicious=0.991241
Mojolicious=0.991242
Mojolicious=0.991243
Mojolicious=0.991244
Mojolicious=0.991245
Mojolicious=0.991246
Mojolicious=0.991250
Mojolicious=0.991251
Mojolicious=0.999901
Mojolicious=0.999902
Mojolicious=0.999903
Mojolicious=0.999904
Mojolicious=0.999905
Mojolicious=0.999906
Mojolicious=0.999907
Mojolicious=0.999908
Mojolicious=0.999909
Mojolicious=0.999910
Mojolicious=0.999911
Mojolicious=0.999912
Mojolicious=0.999913
Mojolicious=0.999914
Mojolicious=0.999920
Mojolicious=0.999921
Mojolicious=0.999922
Mojolicious=0.999923
Mojolicious=0.999924
Mojolicious=0.999925

Remedy

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=622952

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2010-4803?

    CVE-2010-4803 has a severity of medium due to improper HMAC-MD5 checksums that could lead to unspecified impacts and potential remote attacks.

  • How do I fix CVE-2010-4803?

    To fix CVE-2010-4803, upgrade Mojolicious to version 0.999927 or later, which includes the necessary security fixes.

  • What is vulnerable in CVE-2010-4803?

    CVE-2010-4803 affects Mojolicious versions prior to 0.999927, specifically 0.8007 and others listed up to 0.999926.

  • Can CVE-2010-4803 be exploited remotely?

    Yes, CVE-2010-4803 can be exploited remotely due to its vulnerabilities in the HMAC-MD5 checksum implementations.

  • What kind of impact does CVE-2010-4803 have?

    The impact of CVE-2010-4803 is unspecified, but it poses a risk related to the integrity of checksum verification in Mojolicious.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203