CVE-2011-4761
First published: Fri Dec 16 2011(Updated: )
Parallels Plesk Small Business Panel 10.2.0 omits the Content-Type header's charset parameter for certain resources, which might allow remote attackers to have an unspecified impact by leveraging an interpretation conflict involving domains/sitebuilder_edit.php and certain other files. NOTE: it is possible that only clients, not the SmarterStats product, could be affected by this issue.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Plesk | =10.2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2011-4761?
The severity of CVE-2011-4761 is considered moderate due to the potential for interpretation conflicts.
How do I fix CVE-2011-4761?
To fix CVE-2011-4761, update to a patched version of Parallels Plesk Small Business Panel beyond version 10.2.0.
What type of impact can CVE-2011-4761 have?
CVE-2011-4761 can potentially allow remote attackers to exploit an interpretation conflict affecting certain resources.
Which software versions are affected by CVE-2011-4761?
CVE-2011-4761 specifically affects Parallels Plesk Small Business Panel version 10.2.0.
What resources are involved in CVE-2011-4761?
The resources involved in CVE-2011-4761 include domains/sitebuilder_edit.php and certain other related files.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/severity
- agent/last-modified-date
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/parallels
- canonical/plesk
- version/plesk/10.2.0