CVE-2010-1104
medium
CVSS v3
—
CVSS v2
4.3
VIR risk
4.3
Description
Moderate severity vulnerability that affects Zope2
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: cve@mitre.org — https://mail.zope.org/pipermail/zope-announce/2010-January/002229.html
Vendor advisory: cve@mitre.org — http://www.vupen.com/english/advisories/2010/0104
Vendor advisory: cve@mitre.org — http://secunia.com/advisories/38007
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| zope | zope | 2.8.0-a2 | |
| zope | zope | 2.8.0-b1 | |
| zope | zope | 2.8.0-b2 | |
| zope | zope | 2.8.0-final | |
| zope | zope | 2.8.1 | |
| zope | zope | 2.8 | |
| zope | zope | 2.8.0 | |
| zope | zope | 2.8.0-a1 | |
| zope | zope | 2.8.1-b1 | |
| zope | zope | 2.8.1-final | |
| zope | zope | 2.8.2 | |
| zope | zope | 2.8.3 | |
| zope | zope | 2.8.4 | |
| zope | zope | 2.8.5 | |
| zope | zope | 2.8.6 | |
| zope | zope | 2.8.7 | |
| zope | zope | 2.8.8 | |
| zope | zope | 2.8.9 | |
| zope | zope | 2.8.9.1 | |
| zope | zope | 2.8.10 | |
| zope | zope | 2.8.11 | |
| zope | zope | 2.9.0 | |
| zope | zope | 2.9.0-b1 | |
| zope | zope | 2.9.0-b2 | |
| zope | zope | 2.9.1 | |
| zope | zope | 2.9.2 | |
| zope | zope | 2.9.3 | |
| zope | zope | 2.9.4 | |
| zope | zope | 2.9.5 | |
| zope | zope | 2.9.6 | |
| zope | zope | 2.9.7 | |
| zope | zope | 2.9.8 | |
| zope | zope | 2.9.9 | |
| zope | zope | 2.9.10 | |
| zope | zope | 2.9.11 | |
| zope | zope | 2.10.0-b1 | |
| zope | zope | 2.10.0-b2 | |
| zope | zope | 2.10.0-c1 | |
| zope | zope | 2.10.0-final | |
| zope | zope | 2.10.2 | |
| zope | zope | 2.10.2-b1 | |
| zope | zope | 2.10.2-final | |
| zope | zope | 2.10.3 | |
| zope | zope | 2.10.3-final | |
| zope | zope | 2.10.4-final | |
| zope | zope | 2.10.5 | |
| zope | zope | 2.10.6 | |
| zope | zope | 2.10.7 | |
| zope | zope | 2.10.8 | |
| zope | zope | 2.10.9 | |
| zope | zope | 2.10.10 | |
| zope | zope | 2.10.11 | |
| zope | zope | 2.11.0 | |
| zope | zope | 2.11.0a1 | |
| zope | zope | 2.11.0b1 | |
| zope | zope | 2.11.0c1 | |
| zope | zope | 2.11.1 | |
| zope | zope | 2.11.2 | |
| zope | zope | 2.11.3 | |
| zope | zope | 2.11.4 | |
| zope | zope | 2.11.5 | |
| zope | zope | 2.12.0 | |
| zope | zope | 2.12.1 | |
| zope | zope | 2.12.2 | |
References
- http://secunia.com/advisories/38007
- http://www.osvdb.org/61655
- http://www.securityfocus.com/bid/37765
- http://www.vupen.com/english/advisories/2010/0104
- https://exchange.xforce.ibmcloud.com/vulnerabilities/55599
- https://mail.zope.org/pipermail/zope-announce/2010-January/002229.html
- https://nvd.nist.gov/vuln/detail/CVE-2010-1104
- https://github.com/advisories/GHSA-v7q8-wvvh-c97p
CWEs
CWE-79
Verify integrity in audit chain (admin only). AS-IS.