[Nitro] [PATCH] Fix an exploitable bug in CGI multipart parsing

George Moschovitis george.moschovitis at gmail.com
Thu Oct 26 07:15:33 EDT 2006


vulnerability? hmm let me check diz ;-)

-g.

On 10/25/06, Michael Fellinger <manveru at weez-int.com> wrote:
> patch attached, it's still warm :)
> please apply ASAP (also you guys who use 0.31, please patch)
>
> This fully closes a previously-reported but partially-fixed vulnerability:
>   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0983
>   http://www.securityfocus.com/bid/11618/info
>
> thanks to zedas who informed us :)
>
> ^ manveru
>
>
> _______________________________________________
> Nitro-general mailing list
> Nitro-general at rubyforge.org
> http://rubyforge.org/mailman/listinfo/nitro-general
>
>
>


-- 
http://www.gmosx.com
http://www.nitroproject.org


More information about the Nitro-general mailing list