Ubuntu Update For Moin Vulnerabilities USN-458-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-458-1

Solution

Please Install the Updated Packages.

Insight

A flaw was discovered in MoinMoin's error reporting when using the AttachFile action. By tricking a user into viewing a crafted MoinMoin URL, an attacker could execute arbitrary JavaScript as the current MoinMoin user, possibly exposing the user's authentication information for the domain where MoinMoin was hosted. (CVE-2007-2423) Flaws were discovered in MoinMoin's ACL handling for calendars and includes. Unauthorized users would be able to read pages that would otherwise be unavailable to them.

Affected

moin vulnerabilities on Ubuntu 6.06 LTS , Ubuntu 6.10 , Ubuntu 7.04

Severity

Classification

CVE CVE-2007-2423

CVSS	Base Score: 5.8 AV:N/AC:M/Au:N/C:P/I:P/A:N

Related Vulnerabilities

Ubuntu Update for bind9 USN-1264-1
Ubuntu Update for dbus vulnerabilities USN-653-1
Ubuntu Update for boost vulnerabilities USN-570-1
Ubuntu Update for curl USN-1894-1
Ubuntu Update for apache2 USN-1765-1

Ubuntu Update for moin vulnerabilities USN-458-1

Take action and discover your vulnerabilities