subject:"\[bug #32013\] CVE\-2010\-4524\: Improper escaping of certain HTML sequences \(XSS\)"

[bug #32013] CVE-2010-4524: Improper escaping of certain HTML sequences (XSS)

2011-01-09 Thread Earl Hood


Update of bug #32013 (project mhonarc):

  Item Group:  Undesired Behavior => Security   
 Open/Closed:Open => Closed 


___

Reply to this item at:

  

___
  Message sent via/by Savannah
  http://savannah.nongnu.org/

-
To sign-off this list, send email to majord...@mhonarc.org with the
message text UNSUBSCRIBE MHONARC-DEV

[bug #32013] CVE-2010-4524: Improper escaping of certain HTML sequences (XSS)

2011-01-09 Thread Earl Hood


Update of bug #32013 (project mhonarc):

  Status:  Ready For Test => Fixed  


___

Reply to this item at:

  

___
  Message sent via/by Savannah
  http://savannah.nongnu.org/

-
To sign-off this list, send email to majord...@mhonarc.org with the
message text UNSUBSCRIBE MHONARC-DEV

[bug #32013] CVE-2010-4524: Improper escaping of certain HTML sequences (XSS)

2011-01-09 Thread Earl Hood


Update of bug #32013 (project mhonarc):

   Fixed Release: => 2.6.17 


___

Reply to this item at:

  

___
  Message sent via/by Savannah
  http://savannah.nongnu.org/

-
To sign-off this list, send email to majord...@mhonarc.org with the
message text UNSUBSCRIBE MHONARC-DEV

[bug #32013] CVE-2010-4524: Improper escaping of certain HTML sequences (XSS)

2010-12-30 Thread Earl Hood


Update of bug #32013 (project mhonarc):

  Status:   Confirmed => Ready For Test 

___

Follow-up Comment #1:

mhtxthtml.pl filter modified to reject any message with
nested tags.  This is invalid HTML, so any message
that contains it would likely indicate someone trying
to attack an archive web site.

___

Reply to this item at:

  

___
  Message sent via/by Savannah
  http://savannah.nongnu.org/

-
To sign-off this list, send email to majord...@mhonarc.org with the
message text UNSUBSCRIBE MHONARC-DEV

[bug #32013] CVE-2010-4524: Improper escaping of certain HTML sequences (XSS)

2010-12-30 Thread Earl Hood


Update of bug #32013 (project mhonarc):

 Summary: Improper escaping of certain HTML sequences (XSS) 
=> CVE-2010-4524: Improper escaping of certain HTML sequences (XSS) 


___

Reply to this item at:

  

___
  Message sent via/by Savannah
  http://savannah.nongnu.org/

-
To sign-off this list, send email to majord...@mhonarc.org with the
message text UNSUBSCRIBE MHONARC-DEV

[bug #32013] CVE-2010-4524: Improper escaping of certain HTML sequences (XSS)

[bug #32013] CVE-2010-4524: Improper escaping of certain HTML sequences (XSS)

[bug #32013] CVE-2010-4524: Improper escaping of certain HTML sequences (XSS)

[bug #32013] CVE-2010-4524: Improper escaping of certain HTML sequences (XSS)

[bug #32013] CVE-2010-4524: Improper escaping of certain HTML sequences (XSS)

5 matches

Site Navigation

Mail list logo

Footer information