"Fossies" - the Fresh Open Source Software Archive

Member "astrocam-2.7.6/BUGS" (26 May 2009, 829 Bytes) of package /linux/www/old/astrocam-2.7.6.tgz:


As a special service "Fossies" has tried to format the requested text file into HTML format (style: standard) with prefixed line numbers. Alternatively you can here view or download the uninterpreted source code file.

    1 BUGS:
    2 
    3 There are no known Bugs in the current Version. Please contact me if you
    4 found a bug.
    5 
    6 Known security holes in older releases:
    7 
    8 MINOR_SEC  v. 2.5.0   - 2.7.3   - XSS hole in pic.php
    9  CVE-2008-2075; It was possibly to execute HTML embedded script code
   10  in pic.php. (01-05-08)
   11 
   12 MINOR_SEC  v. 2.0.0   - 2.6.5   - webinterface remote DoS
   13  CVE-2007-1426; It was possibly to shut down these astrocam versions
   14  remote via webinterface if someone writes too much data in the 'a'
   15  variable, what fills up the message queue. Not exploitable, but DoS.
   16  (09-03-07)
   17 
   18 MAJOR_SEC  v. 0.9-1-1 - 1.4.0   - cgi-webinterface remote execution,
   19  CVE-2002-1874; This CVE version numbers are currently _incorrect_,
   20  The version numbers in this file are the correct ones!; It was
   21  possibly to execute commands using a simple webinterface attack.
   22