[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Mathopd - Directory Traversal Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Mathopd - Directory Traversal Vulnerability
From: Mateusz Goik <mateusz.goik@xxxxxxxxxxxxx>
Date: Fri, 03 Feb 2012 11:58:45 +0100

Hi,

Mathopd - Security Alerts

Directory Traversal Vulnerability

Reported: 2 February 2012

Older versions of the software have a vulnerability that could lead to
directory traversal if the '*' construct for mass virtual hosting is used.

Affected: all 1.4 versions, all 1.5 versions up to 1.5p7.

Fixed in: Mathopd 1.5p7


http://www.mathopd.org/security.html
http://www.mail-archive.com/mathopd%40mathopd.org/msg00392.html

Prev by Date: [SECURITY] [DSA 2405-1] apache2 security update
Next by Date: [ MDVSA-2012:014 ] glpi
Previous by thread: [SECURITY] [DSA 2405-1] apache2 security update
Next by thread: [ MDVSA-2012:014 ] glpi
Index(es):
- Date
- Thread