CVE-2006-0847

Publication date 22 February 2006

Last updated 24 July 2024


Ubuntu priority

Directory traversal vulnerability in the staticfilter component in CherryPy before 2.1.1 allows remote attackers to read arbitrary files via ".." sequences in unspecified vectors.

Status

Package Ubuntu Release Status
cherrypy3 9.10 karmic
Fixed 3.0.2-1
9.04 jaunty
Fixed 3.0.2-1
8.10 intrepid
Fixed 3.0.2-1
8.04 LTS hardy
Fixed 3.0.2-1
7.10 gutsy
Fixed 3.0.2-1
7.04 feisty Not in release
6.10 edgy Not in release
6.06 LTS dapper Not in release
python-cherrypy 9.10 karmic
Fixed 2.2.1-3
9.04 jaunty
Fixed 2.2.1-3
8.10 intrepid
Fixed 2.2.1-3
8.04 LTS hardy
Fixed 2.2.1-3
7.10 gutsy
Fixed 2.2.1-3
7.04 feisty
Fixed 2.2.1-3
6.10 edgy
Fixed 2.2.1-3
6.06 LTS dapper Ignored end of life