CVE-2006-4684
N/A
N/A
Summary
The docutils module in Zope (Zope2) 2.7.0 through 2.7.9 and 2.8.0 through 2.8.8 does not properly handle web pages with reStructuredText (reST) markup, which allows remote attackers to read arbitrary files via a csv_table directive, a different vulnerability than CVE-2006-3458.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://mail.zope.org/pipermail/zope-announce/2006-August/002005.html
- http://www.vupen.com/english/advisories/2006/3653
- http://secunia.com/advisories/21953
- http://www.securityfocus.com/bid/20022
- http://www.zope.org/Products/Zope/Hotfix-2006-08-21/Hotfix-20060821/README.txt
- http://www.debian.org/security/2006/dsa-1176
- http://secunia.com/advisories/21947
References
- http://mail.zope.org/pipermail/zope-announce/2006-August/002005.html
- http://www.vupen.com/english/advisories/2006/3653
- http://secunia.com/advisories/21953
- http://www.securityfocus.com/bid/20022
- http://www.zope.org/Products/Zope/Hotfix-2006-08-21/Hotfix-20060821/README.txt
- http://www.debian.org/security/2006/dsa-1176
- http://secunia.com/advisories/21947
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.