Your submission was sent successfully! Close

CVE-2010-0667

Published: 26 February 2010

MoinMoin 1.9 before 1.9.1 does not perform the expected clearing of the sys.argv array in situations where the GATEWAY_INTERFACE environment variable is set, which allows remote attackers to obtain sensitive information via unspecified vectors.

Notes

AuthorNote
jdstand
this only affect 1.9
Priority

Low

Status

Package Release Status
moin
Launchpad, Ubuntu, Debian
dapper Not vulnerable

hardy Not vulnerable

intrepid Not vulnerable

jaunty Not vulnerable

karmic Not vulnerable

lucid Not vulnerable
(1.8.4-1ubuntu2)
upstream
Released (1.9.1)
Patches:
upstream: http://hg.moinmo.in/moin/1.9/rev/04afdde50094