4.3 - CVE-2010-2761

Executive Summary

Informations
Name	CVE-2010-2761	First vendor Publication	2010-12-06
Vendor	Cve	Last vendor Modification	2024-11-21

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:N/I:P/A:N)
Cvss Base Score	4.3	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

The multipart_init function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier uses a hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, which allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via crafted input that contains this value, a different vulnerability than CVE-2010-3172.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2761

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-94	Failure to Control Generation of Code ('Code Injection')

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:20547

Oval ID:	oval:org.mitre.oval:def:20547
Title:	VMware vSphere and vCOps updates to third party libraries
Description:	The multipart_init function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier uses a hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, which allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via crafted input that contains this value, a different vulnerability than CVE-2010-3172.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-2761	Version:	4
Platform(s):	VMWare ESX Server 4.1	Product(s):
Definition Synopsis:
Patch ESX410-201208107-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201208107-SG is not installed

CPE : Common Platform Enumeration

Type	Description	Count
Application	Andy Armstrong Cgi-Simple cpe:2.3:a:andy_armstrong:cgi-simple:1.112:::::::* cpe:2.3:a:andy_armstrong:cgi-simple:1.111:::::::* cpe:2.3:a:andy_armstrong:cgi-simple:1.110:::::::* cpe:2.3:a:andy_armstrong:cgi-simple:1.109:::::::* cpe:2.3:a:andy_armstrong:cgi-simple:1.108:::::::* cpe:2.3:a:andy_armstrong:cgi-simple:1.107:::::::* cpe:2.3:a:andy_armstrong:cgi-simple:1.106:::::::* cpe:2.3:a:andy_armstrong:cgi-simple:1.105:::::::* cpe:2.3:a:andy_armstrong:cgi-simple:1.104:::::::* cpe:2.3:a:andy_armstrong:cgi-simple:1.103:::::::* cpe:2.3:a:andy_armstrong:cgi-simple:1.1.2:::::::* cpe:2.3:a:andy_armstrong:cgi-simple:1.1.1:::::::* cpe:2.3:a:andy_armstrong:cgi-simple:1.1:::::::* cpe:2.3:a:andy_armstrong:cgi-simple:1.0:::::::* cpe:2.3:a:andy_armstrong:cgi-simple:0.83:::::::* cpe:2.3:a:andy_armstrong:cgi-simple:0.082:::::::* cpe:2.3:a:andy_armstrong:cgi-simple:0.081:::::::* cpe:2.3:a:andy_armstrong:cgi-simple:0.080:::::::* cpe:2.3:a:andy_armstrong:cgi-simple:0.079:::::::* cpe:2.3:a:andy_armstrong:cgi-simple:0.078:::::::*	20
Application	Andy Armstrong Cgi.Pm cpe:2.3:a:andy_armstrong:cgi.pm:3.49:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.48:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.47:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.46:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.45:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.44:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.43:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.42:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.41:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.40:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.39:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.38:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.37:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.36:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.35:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.34:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.33:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.32:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.31:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.30:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.29:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.28:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.27:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.26:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.25:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.24:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.23:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.22:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.21:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.20:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.19:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.18:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.17:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.16:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.15:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.14:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.13:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.12:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.11:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.10:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.09:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.08:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.07:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.06:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.05:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.04:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.03:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.02:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.01:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:3.00:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.99:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.98:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.97:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.96:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.95:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.94:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.93:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.92:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.91:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.90:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.89:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.88:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.87:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.86:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.85:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.84:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.83:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.82:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.81:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.80:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.79:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.78:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.77:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.76:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.752:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.751:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.75:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.74:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.73:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.72:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.71:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.70:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.69:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.68:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.67:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.66:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.65:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.64:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.63:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.62:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.61:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.60:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.59:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.58:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.57:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.56:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.55:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.54:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.53:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.52:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.51:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.50:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.49:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.48:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.47:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.46:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.45:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.44:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.43:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.42:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.41:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.40:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.39:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.38:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.37:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.36:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.35:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.34:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.33:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.32:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.31:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.30:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.29:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.28:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.27:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.26:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.25:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.24:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.23:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.22:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.21:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.20:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.19:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.18:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.17:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.16:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.15:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.14:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.13:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.01:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:2.0:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:1.57:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:1.56:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:1.55:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:1.54:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:1.53:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:1.52:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:1.51:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:1.50:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:1.45:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:1.44:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:1.43:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:1.42:::::::* cpe:2.3:a:andy_armstrong:cgi.pm:1.4:::::::*	154

OpenVAS Exploits

Date	Description
2012-08-31	Name : VMSA-2012-0013 VMware vSphere and vCOps updates to third party libraries. File : nvt/gb_VMSA-2012-0013.nasl
2012-07-30	Name : CentOS Update for perl CESA-2011:1797 centos4 x86_64 File : nvt/gb_CESA-2011_1797_perl_centos4_x86_64.nasl
2012-07-30	Name : CentOS Update for perl CESA-2011:1797 centos5 x86_64 File : nvt/gb_CESA-2011_1797_perl_centos5_x86_64.nasl
2012-07-09	Name : RedHat Update for perl RHSA-2011:0558-01 File : nvt/gb_RHSA-2011_0558-01_perl.nasl
2012-02-12	Name : Gentoo Security Advisory GLSA 201110-03 (bugzilla) File : nvt/glsa_201110_03.nasl
2011-12-12	Name : CentOS Update for perl CESA-2011:1797 centos4 i386 File : nvt/gb_CESA-2011_1797_perl_centos4_i386.nasl
2011-12-12	Name : CentOS Update for perl CESA-2011:1797 centos5 i386 File : nvt/gb_CESA-2011_1797_perl_centos5_i386.nasl
2011-12-09	Name : RedHat Update for perl RHSA-2011:1797-01 File : nvt/gb_RHSA-2011_1797-01_perl.nasl
2011-05-10	Name : Ubuntu Update for perl USN-1129-1 File : nvt/gb_ubuntu_USN_1129_1.nasl
2011-03-05	Name : FreeBSD Ports: bugzilla File : nvt/freebsd_bugzilla12.nasl
2011-02-04	Name : Fedora Update for perl-CGI FEDORA-2011-0640 File : nvt/gb_fedora_2011_0640_perl-CGI_fc14.nasl
2011-02-04	Name : Fedora Update for perl-CGI FEDORA-2011-0654 File : nvt/gb_fedora_2011_0654_perl-CGI_fc13.nasl
2011-02-04	Name : Fedora Update for bugzilla FEDORA-2011-0741 File : nvt/gb_fedora_2011_0741_bugzilla_fc14.nasl
2011-01-31	Name : Fedora Update for perl-CGI-Simple FEDORA-2011-0631 File : nvt/gb_fedora_2011_0631_perl-CGI-Simple_fc13.nasl
2011-01-31	Name : Fedora Update for perl-CGI-Simple FEDORA-2011-0653 File : nvt/gb_fedora_2011_0653_perl-CGI-Simple_fc14.nasl
2011-01-21	Name : Mandriva Update for perl-CGI MDVSA-2011:008 (perl-CGI) File : nvt/gb_mandriva_MDVSA_2011_008.nasl
2010-12-28	Name : Mandriva Update for perl-CGI-Simple MDVSA-2010:252 (perl-CGI-Simple) File : nvt/gb_mandriva_MDVSA_2010_252.nasl
2010-12-23	Name : Mandriva Update for perl-CGI-Simple MDVSA-2010:250 (perl-CGI-Simple) File : nvt/gb_mandriva_MDVSA_2010_250.nasl
2010-12-02	Name : Perl CGI.pm Header Values Newline Handling Unspecified Security Vulnerability File : nvt/gb_perl_CGI_45145.nasl
2010-11-23	Name : Mandriva Update for perl-CGI MDVSA-2010:237 (perl-CGI) File : nvt/gb_mandriva_MDVSA_2010_237.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
69588	CGI.pm multipart_init() Function multipart/x-mixed-replace MIME Type HTTP Hea... CGI.pm contains a flaw related to the 'multipart_init()' function when handing a message with 'multipart/x-mixed-replace' MIME type. This may allow a remote attacker to inject arbitrary HTTP headers in a response to the user.

Information Assurance Vulnerability Management (IAVM)

Date	Description
2012-09-27	IAVM : 2012-A-0153 - Multiple Vulnerabilities in VMware ESX 4.0 and ESXi 4.0 Severity : Category I - VMSKEY : V0033884
2012-09-13	IAVM : 2012-B-0086 - VMware vCenter Operations Arbitrary File Overwrite Vulnerability Severity : Category I - VMSKEY : V0033791
2012-09-13	IAVM : 2012-A-0146 - Multiple Vulnerabilities in VMware vCenter Update Manager 4.1 Severity : Category I - VMSKEY : V0033792
2012-09-13	IAVM : 2012-A-0147 - Multiple Vulnerabilities in VMware vCenter Server 4.1 Severity : Category I - VMSKEY : V0033793
2012-09-13	IAVM : 2012-A-0148 - Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1 Severity : Category I - VMSKEY : V0033794

Nessus® Vulnerability Scanner

Date	Description
2016-02-29	Name : The remote VMware ESX / ESXi host is missing a security-related patch. File : vmware_VMSA-2012-0013_remote.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_3_perl-CGI-Simple-110107.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_3_perl-110112.nasl - Type : ACT_GATHER_INFO
2013-11-13	Name : The remote VMware ESXi 5.0 host is affected by multiple vulnerabilities. File : vmware_esxi_5_0_build_912577_remote.nasl - Type : ACT_GATHER_INFO
2013-07-29	Name : The remote host has a virtualization appliance installed that is affected by ... File : vcenter_operations_manager_vmsa_2012-0013.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-1797.nasl - Type : ACT_GATHER_INFO
2013-06-17	Name : The remote host has an update manager installed that is affected by multiple ... File : vmware_vcenter_update_mgr_vmsa-2012-0013.nasl - Type : ACT_GATHER_INFO
2013-06-05	Name : The remote host has a virtualization management application installed that is... File : vmware_vcenter_vmsa-2012-0013.nasl - Type : ACT_GATHER_INFO
2012-08-31	Name : The remote VMware ESXi / ESX host is missing one or more security-related pat... File : vmware_VMSA-2012-0013.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110519_perl_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20111208_perl_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2011-12-12	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2011-1797.nasl - Type : ACT_GATHER_INFO
2011-12-09	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1797.nasl - Type : ACT_GATHER_INFO
2011-10-11	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201110-03.nasl - Type : ACT_GATHER_INFO
2011-06-13	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1129-1.nasl - Type : ACT_GATHER_INFO
2011-05-20	Name : The remote host is missing the patch for the advisory RHSA-2011-0558 File : redhat-RHSA-2011-0558.nasl - Type : ACT_GATHER_INFO
2011-05-05	Name : The remote openSUSE host is missing a security update. File : suse_11_2_perl-110112.nasl - Type : ACT_GATHER_INFO
2011-05-05	Name : The remote openSUSE host is missing a security update. File : suse_11_2_perl-CGI-Simple-110107.nasl - Type : ACT_GATHER_INFO
2011-02-03	Name : The remote Fedora host is missing a security update. File : fedora_2011-0755.nasl - Type : ACT_GATHER_INFO
2011-02-03	Name : The remote Fedora host is missing a security update. File : fedora_2011-0741.nasl - Type : ACT_GATHER_INFO
2011-02-01	Name : The remote Fedora host is missing a security update. File : fedora_2011-0654.nasl - Type : ACT_GATHER_INFO
2011-02-01	Name : The remote Fedora host is missing a security update. File : fedora_2011-0640.nasl - Type : ACT_GATHER_INFO
2011-01-31	Name : The remote Fedora host is missing a security update. File : fedora_2011-0653.nasl - Type : ACT_GATHER_INFO
2011-01-31	Name : The remote Fedora host is missing a security update. File : fedora_2011-0631.nasl - Type : ACT_GATHER_INFO
2011-01-28	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-008.nasl - Type : ACT_GATHER_INFO
2011-01-26	Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_c8c927e5289111e08f2600151735203a.nasl - Type : ACT_GATHER_INFO
2011-01-21	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_perl-110112.nasl - Type : ACT_GATHER_INFO
2011-01-21	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_perl-7316.nasl - Type : ACT_GATHER_INFO
2010-11-16	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-237.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

http://cpansearch.perl.org/src/LDS/CGI.pm-3.50/Changes
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735
http://lists.fedoraproject.org/pipermail/package-announce/2011-February/05366...
http://lists.fedoraproject.org/pipermail/package-announce/2011-February/05367...
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053576...
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053591...
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00003.html
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
http://openwall.com/lists/oss-security/2010/12/01/1
http://openwall.com/lists/oss-security/2010/12/01/2
http://openwall.com/lists/oss-security/2010/12/01/3
http://osvdb.org/69588
http://osvdb.org/69589
http://perl5.git.perl.org/perl.git/blobdiff/a0b94c2432b1d8c20653453a0f6970cb1...
http://perl5.git.perl.org/perl.git/commit/84601d63a7e34958da47dad1e61e27cb3bd...
http://secunia.com/advisories/42877
http://secunia.com/advisories/43033
http://secunia.com/advisories/43068
http://secunia.com/advisories/43147
http://secunia.com/advisories/43165
http://www.bugzilla.org/security/3.2.9/
http://www.mandriva.com/security/advisories?name=MDVSA-2010:237
http://www.mandriva.com/security/advisories?name=MDVSA-2010:250
http://www.nntp.perl.org/group/perl.perl5.changes/2010/11/msg28043.html
http://www.redhat.com/support/errata/RHSA-2011-1797.html
http://www.vupen.com/english/advisories/2011/0076
http://www.vupen.com/english/advisories/2011/0207
http://www.vupen.com/english/advisories/2011/0212
http://www.vupen.com/english/advisories/2011/0249
http://www.vupen.com/english/advisories/2011/0271
https://bugzilla.mozilla.org/show_bug.cgi?id=591165
https://bugzilla.mozilla.org/show_bug.cgi?id=600464
https://github.com/AndyA/CGI--Simple/commit/e4942b871a26c1317a175a91ebb7262ee...

Source	Url

Alert History

If you want to see full details history, please login or register.

Date	Informations
2024-11-28 23:06:49	Multiple Updates
2024-11-28 12:22:27	Multiple Updates
2020-05-23 01:42:22	Multiple Updates
2020-05-23 00:26:09	Multiple Updates
2016-12-08 09:23:24	Multiple Updates
2016-12-03 09:23:52	Multiple Updates
2016-06-28 18:16:24	Multiple Updates
2016-04-26 19:58:23	Multiple Updates
2016-03-01 13:26:32	Multiple Updates
2014-06-14 13:28:59	Multiple Updates
2014-02-17 10:56:32	Multiple Updates
2014-02-12 13:21:59	Multiple Updates
2013-11-11 12:38:51	Multiple Updates
2013-05-10 23:29:13	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	1
CPE ID(s)	174
Sources(s)	35
osvdb(s)	1
Openvas Exploit(s)	20
IAVM(s)	5
Nessus® Exploit(s)	29

	Related
9.3	VMSA-2012-0013
8.5	USN-1129-1
7.5	RHSA-2011:1797
7.5	GLSA-201110-03
5	RHSA-2011:0558
4.3	MDVSA-2011:008
4.3	MDVSA-2010:252
4.3	MDVSA-2010:250
4.3	MDVSA-2010:237
2.6	CVE-2010-3172
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 10 more Alert(s)

4.3 - CVE-2010-2761

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

OVAL Definitions

CPE : Common Platform Enumeration

OpenVAS Exploits

Open Source Vulnerability Database (OSVDB)

Information Assurance Vulnerability Management (IAVM)

Nessus® Vulnerability Scanner

Sources (Detail)

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU