Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2016-1000110

Опубликовано: 27 нояб. 2019
Источник: ubuntu
Приоритет: medium
CVSS2: 5.8
CVSS3: 6.1

Описание

The CGIHandler class in Python before 2.7.12 does not protect against the HTTP_PROXY variable name clash in a CGI script, which could allow a remote attacker to redirect HTTP requests.

РелизСтатусПримечание
bionic

not-affected

2.7.12-3build1
devel

DNE

disco

not-affected

2.7.12-3build1
eoan

not-affected

2.7.12-3build1
esm-apps/focal

not-affected

2.7.12-3build1
esm-apps/jammy

not-affected

2.7.12-3build1
esm-infra-legacy/trusty

not-affected

2.7.6-8ubuntu0.3
esm-infra/bionic

not-affected

2.7.12-3build1
esm-infra/xenial

not-affected

2.7.12-1ubuntu0~16.04.1
focal

not-affected

2.7.12-3build1

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-infra-legacy/trusty

DNE

esm-infra/focal

DNE

focal

DNE

groovy

DNE

hirsute

DNE

impish

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-infra-legacy/trusty

not-affected

3.4.3-1ubuntu1~14.04.5
esm-infra/focal

DNE

focal

DNE

groovy

DNE

hirsute

DNE

impish

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

devel

DNE

disco

DNE

eoan

DNE

esm-infra-legacy/trusty

not-affected

3.5.2-2ubuntu0~16.04.4~14.04.1
esm-infra/focal

DNE

esm-infra/xenial

not-affected

3.5.2-2ubuntu0~16.04.1
focal

DNE

groovy

DNE

hirsute

DNE

Показывать по

Ссылки на источники

5.8 Medium

CVSS2

6.1 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2016-1000110

CVSS3: 5
redhat
почти 9 лет назад

The CGIHandler class in Python before 2.7.12 does not protect against the HTTP_PROXY variable name clash in a CGI script, which could allow a remote attacker to redirect HTTP requests.

nvd логотип

CVE-2016-1000110

CVSS3: 6.1
nvd
больше 5 лет назад

The CGIHandler class in Python before 2.7.12 does not protect against the HTTP_PROXY variable name clash in a CGI script, which could allow a remote attacker to redirect HTTP requests.

debian логотип

CVE-2016-1000110

CVSS3: 6.1
debian
больше 5 лет назад

The CGIHandler class in Python before 2.7.12 does not protect against ...

github логотип

GHSA-97ww-5p4j-7pg9

CVSS3: 6.1
github
около 3 лет назад

The CGIHandler class in Python before 2.7.12 does not protect against the HTTP_PROXY variable name clash in a CGI script, which could allow a remote attacker to redirect HTTP requests.

suse-cvrf логотип

SUSE-SU-2016:2270-1

suse-cvrf
почти 9 лет назад

Security update for python

5.8 Medium

CVSS2

6.1 Medium

CVSS3

Уязвимость CVE-2016-1000110