Unspecified vulnerability in (1) Zope 2.12.x before 2.12.19 and 2.13.x before 2.13.8, as used in Plone 4.x and other products, and (2) PloneHotfix20110720 for Plone 3.x allows attackers to gain privileges via unspecified vectors, related to a "highly serious vulnerability." NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-0720.
References
Link | Resource |
---|---|
http://plone.org/products/plone-hotfix/releases/20110622 | Patch Vendor Advisory |
http://plone.org/products/plone/security/advisories/20110622 | Patch Vendor Advisory |
http://secunia.com/advisories/45056 | Vendor Advisory |
http://secunia.com/advisories/45111 | Vendor Advisory |
http://www.openwall.com/lists/oss-security/2011/07/04/6 | Patch |
http://www.openwall.com/lists/oss-security/2011/07/12/9 | Patch |
https://bugzilla.redhat.com/show_bug.cgi?id=718824 | Patch |
https://mail.zope.org/pipermail/zope-announce/2011-June/002260.html | Patch |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2011-07-19 20:55
Updated : 2024-02-28 11:41
NVD link : CVE-2011-2528
Mitre link : CVE-2011-2528
CVE.ORG link : CVE-2011-2528
JSON object : View
Products Affected
plone
- plone_hotfix_20110720
- plone
zope
- zope
CWE