'Re: [oss-security] CVE request: TYPO3-SA-2010-020'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    Re: [oss-security] CVE request: TYPO3-SA-2010-020
From:       Josh Bressers <bressers () redhat ! com>
Date:       2010-10-11 20:06:37
Message-ID: 1323460769.162381286827597847.JavaMail.root () zmail01 ! collab ! prod ! int ! phx2 ! redhat ! com
[Download RAW message or body]


----- "Moritz Muehlenhoff" <jmm@debian.org> wrote:

> Hi,
> Please assign CVE IDs for the following issues:
> http://typo3.org/teams/security/security-bulletins/typo3-sa-2010-020/
> 

I'm going to give this four. We can split the XSS and remote file
disclosure later if it's found they affect different versions.

CVE-2010-3714 typo3-sa-2010-20 Multiple Remote File Disclosure
CVE-2010-3715 typo3-sa-2010-20 Multiple XSS
CVE-2010-3716 typo3-sa-2010-20 Privilege Escalation
CVE-2010-3717 typo3-sa-2010-20 DoS

Thanks.

-- 
    JB
[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic