This CVE name corresponds to:
Entered | Topic |
---|---|
2012-07-26 | p5-RT-Authen-ExternalAuth -- privilege escalation |
The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.
Type | Candidate |
Name | CVE-2012-2770 |
Phase | Assigned(20120518) |
The Authen::ExternalAuth extension before 0.11 for Best Practical Solutions RT allows remote attackers to obtain a logged-in session via unspecified vectors related to the "URL of a RSS feed of the user."
Source | Reference |
---|---|
MLIST | [rt-announce] 20120725 Security vulnerabilities in three commonly deployed RT extensions |
BID | 54681 |
SECUNIA | 50060 |
XF | authenexternalauth-url-sec-bypass(77213) |
Copyright © 2005 The MITRE Corporation.
Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright
information.