CVE-2001-1278

Loading...

General

Score:7.5/10.0
Severity:High
Category:N/A

Impact Metrics

Confidentiality:Partial
Integrity:Partial
Availability:Partial

Exploitability Metrics

Access Vector:Network
Access Complexity:Low
Authentication:None

Published on 10/10/01 - Updated on 10/09/08

Description

Zope before 2.2.4 allows partially trusted users to bypass security controls for certain methods by accessing the methods through the fmt attribute of dtml-var tags.

Category:

There is insufficient information about the issue to classify it; details are unknown or unspecified.

Security Notices

US National Vulnerability DatabaseCVE-2001-1278

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
zopezope

Share this vulnerability with:

Twitter Facebook LinkedIn Mail