This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:git:git:1.2.6
Detail
VendorGitFirst view 2009-01-20
ProductGitLast view 2010-12-17
Version1.2.6TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:git:git

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
4.3 2010-12-17 CVE-2010-3906 Network Medium None Requ...
7.5 2010-08-11 CVE-2010-2542 Network Low None Requ...
7.5 2009-01-20 CVE-2008-5516 Network Low None Requ...

CWE : Common Weakness Enumeration

%idName
25% (1)CWE-264Permissions, Privileges, and Access Controls
25% (1)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
25% (1)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
25% (1)CWE-78Improper Sanitization of Special Elements used in an OS Command ('O...

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:12423DSA-2114-1 git-core -- buffer overflow
oval:org.mitre.oval:def:22223RHSA-2010:1003: git security update (Moderate)
oval:org.mitre.oval:def:23492ELSA-2010:1003: git security update (Moderate)

Open Source Vulnerability Database (OSVDB)

idDescription
69929Gitweb index.php Multiple Parameter XSS
67091Git setup.c is_git_directory Function gitdir: Field Overflow
53539GIT gitweb git_search Shell Metacharacter Arbitrary Command Execution

ExploitDB Exploits

idDescription
15744Gitweb <=1.7.3.3 Cross Site Scripting
11497gitWeb v1.5.2 Remote Command Execution

OpenVAS Exploits

idDescription
2011-03-24Name : Fedora Update for cgit FEDORA-2011-2815
File : nvt/gb_fedora_2011_2815_cgit_fc13.nasl
2011-01-11Name : Fedora Update for git FEDORA-2010-18973
File : nvt/gb_fedora_2010_18973_git_fc13.nasl
2010-12-28Name : Mandriva Update for git MDVSA-2010:256 (git)
File : nvt/gb_mandriva_MDVSA_2010_256.nasl
2010-12-28Name : Fedora Update for git FEDORA-2010-18981
File : nvt/gb_fedora_2010_18981_git_fc14.nasl
2010-12-02Name : Fedora Update for cgit FEDORA-2010-15387
File : nvt/gb_fedora_2010_15387_cgit_fc14.nasl
Hide | Show 9 More...
idDescription
2010-10-19Name : Fedora Update for cgit FEDORA-2010-15501
File : nvt/gb_fedora_2010_15501_cgit_fc12.nasl
2010-10-19Name : Fedora Update for cgit FEDORA-2010-15534
File : nvt/gb_fedora_2010_15534_cgit_fc13.nasl
2010-10-04Name : Mandriva Update for git MDVSA-2010:194 (git)
File : nvt/gb_mandriva_MDVSA_2010_194.nasl
2010-08-21Name : FreeBSD Ports: git
File : nvt/freebsd_git1.nasl
2009-06-05Name : Ubuntu USN-707-1 (cupsys)
File : nvt/ubuntu_707_1.nasl
2009-06-05Name : Ubuntu USN-723-1 (git-core)
File : nvt/ubuntu_723_1.nasl
2009-03-13Name : Gentoo Security Advisory GLSA 200903-15 (git)
File : nvt/glsa_200903_15.nasl
2009-01-20Name : Debian Security Advisory DSA 1708-1 (git-core)
File : nvt/deb_1708_1.nasl
0000-00-00Name : Slackware Advisory SSA:2009-051-02 git
File : nvt/esoft_slk_ssa_2009_051_02.nasl

Nessus® Vulnerability Scanner

idDescription
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_git-110117.nasl - Type : ACT_GATHER_INFO
2014-01-12Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201401-06.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-1003.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20101221_git_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2011-05-05Name : The remote openSUSE host is missing a security update.
File : suse_11_2_git-110117.nasl - Type : ACT_GATHER_INFO
Hide | Show 16 More...
idDescription
2011-04-08Name : The remote web server contains a CGI script that can be abused to execute arb...
File : gitweb_git_search_cmd_exec.nasl - Type : ACT_ATTACK
2011-01-04Name : The remote Fedora host is missing a security update.
File : fedora_2010-18973.nasl - Type : ACT_GATHER_INFO
2010-12-26Name : The remote Fedora host is missing a security update.
File : fedora_2010-18981.nasl - Type : ACT_GATHER_INFO
2010-12-23Name : The remote web server hosts a CGI script that is prone to a cross- site scrip...
File : gitweb_f_xss.nasl - Type : ACT_ATTACK
2010-12-22Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2010-1003.nasl - Type : ACT_GATHER_INFO
2010-12-17Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2010-256.nasl - Type : ACT_GATHER_INFO
2010-10-11Name : The remote Fedora host is missing a security update.
File : fedora_2010-15501.nasl - Type : ACT_GATHER_INFO
2010-10-11Name : The remote Fedora host is missing a security update.
File : fedora_2010-15534.nasl - Type : ACT_GATHER_INFO
2010-10-06Name : The remote Fedora host is missing a security update.
File : fedora_2010-15387.nasl - Type : ACT_GATHER_INFO
2010-10-06Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2010-194.nasl - Type : ACT_GATHER_INFO
2010-09-27Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2114.nasl - Type : ACT_GATHER_INFO
2010-07-23Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_827bc2b795ed11df916000e0815b8da8.nasl - Type : ACT_GATHER_INFO
2009-04-23Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-723-1.nasl - Type : ACT_GATHER_INFO
2009-03-10Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200903-15.nasl - Type : ACT_GATHER_INFO
2009-02-23Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2009-051-02.nasl - Type : ACT_GATHER_INFO
2009-01-20Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1708.nasl - Type : ACT_GATHER_INFO