4.3

CVE-2010-4411

Unspecified vulnerability in CGI.pm 3.50 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unknown vectors.  NOTE: this issue exists because of an incomplete fix for CVE-2010-2761.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Andy ArmstrongCgi.Pm Version <= 3.50
Andy ArmstrongCgi.Pm Version1.4
Andy ArmstrongCgi.Pm Version1.42
Andy ArmstrongCgi.Pm Version1.43
Andy ArmstrongCgi.Pm Version1.44
Andy ArmstrongCgi.Pm Version1.45
Andy ArmstrongCgi.Pm Version1.50
Andy ArmstrongCgi.Pm Version1.51
Andy ArmstrongCgi.Pm Version1.52
Andy ArmstrongCgi.Pm Version1.53
Andy ArmstrongCgi.Pm Version1.54
Andy ArmstrongCgi.Pm Version1.55
Andy ArmstrongCgi.Pm Version1.56
Andy ArmstrongCgi.Pm Version1.57
Andy ArmstrongCgi.Pm Version2.0
Andy ArmstrongCgi.Pm Version2.01
Andy ArmstrongCgi.Pm Version2.13
Andy ArmstrongCgi.Pm Version2.14
Andy ArmstrongCgi.Pm Version2.15
Andy ArmstrongCgi.Pm Version2.16
Andy ArmstrongCgi.Pm Version2.17
Andy ArmstrongCgi.Pm Version2.18
Andy ArmstrongCgi.Pm Version2.19
Andy ArmstrongCgi.Pm Version2.20
Andy ArmstrongCgi.Pm Version2.21
Andy ArmstrongCgi.Pm Version2.22
Andy ArmstrongCgi.Pm Version2.23
Andy ArmstrongCgi.Pm Version2.24
Andy ArmstrongCgi.Pm Version2.25
Andy ArmstrongCgi.Pm Version2.26
Andy ArmstrongCgi.Pm Version2.27
Andy ArmstrongCgi.Pm Version2.28
Andy ArmstrongCgi.Pm Version2.29
Andy ArmstrongCgi.Pm Version2.30
Andy ArmstrongCgi.Pm Version2.31
Andy ArmstrongCgi.Pm Version2.32
Andy ArmstrongCgi.Pm Version2.33
Andy ArmstrongCgi.Pm Version2.34
Andy ArmstrongCgi.Pm Version2.35
Andy ArmstrongCgi.Pm Version2.36
Andy ArmstrongCgi.Pm Version2.37
Andy ArmstrongCgi.Pm Version2.38
Andy ArmstrongCgi.Pm Version2.39
Andy ArmstrongCgi.Pm Version2.40
Andy ArmstrongCgi.Pm Version2.41
Andy ArmstrongCgi.Pm Version2.42
Andy ArmstrongCgi.Pm Version2.43
Andy ArmstrongCgi.Pm Version2.44
Andy ArmstrongCgi.Pm Version2.45
Andy ArmstrongCgi.Pm Version2.46
Andy ArmstrongCgi.Pm Version2.47
Andy ArmstrongCgi.Pm Version2.48
Andy ArmstrongCgi.Pm Version2.49
Andy ArmstrongCgi.Pm Version2.50
Andy ArmstrongCgi.Pm Version2.51
Andy ArmstrongCgi.Pm Version2.52
Andy ArmstrongCgi.Pm Version2.53
Andy ArmstrongCgi.Pm Version2.54
Andy ArmstrongCgi.Pm Version2.55
Andy ArmstrongCgi.Pm Version2.56
Andy ArmstrongCgi.Pm Version2.57
Andy ArmstrongCgi.Pm Version2.58
Andy ArmstrongCgi.Pm Version2.59
Andy ArmstrongCgi.Pm Version2.60
Andy ArmstrongCgi.Pm Version2.61
Andy ArmstrongCgi.Pm Version2.62
Andy ArmstrongCgi.Pm Version2.63
Andy ArmstrongCgi.Pm Version2.64
Andy ArmstrongCgi.Pm Version2.65
Andy ArmstrongCgi.Pm Version2.66
Andy ArmstrongCgi.Pm Version2.67
Andy ArmstrongCgi.Pm Version2.68
Andy ArmstrongCgi.Pm Version2.69
Andy ArmstrongCgi.Pm Version2.70
Andy ArmstrongCgi.Pm Version2.71
Andy ArmstrongCgi.Pm Version2.72
Andy ArmstrongCgi.Pm Version2.73
Andy ArmstrongCgi.Pm Version2.74
Andy ArmstrongCgi.Pm Version2.75
Andy ArmstrongCgi.Pm Version2.76
Andy ArmstrongCgi.Pm Version2.77
Andy ArmstrongCgi.Pm Version2.78
Andy ArmstrongCgi.Pm Version2.79
Andy ArmstrongCgi.Pm Version2.80
Andy ArmstrongCgi.Pm Version2.81
Andy ArmstrongCgi.Pm Version2.82
Andy ArmstrongCgi.Pm Version2.83
Andy ArmstrongCgi.Pm Version2.84
Andy ArmstrongCgi.Pm Version2.85
Andy ArmstrongCgi.Pm Version2.86
Andy ArmstrongCgi.Pm Version2.87
Andy ArmstrongCgi.Pm Version2.88
Andy ArmstrongCgi.Pm Version2.89
Andy ArmstrongCgi.Pm Version2.90
Andy ArmstrongCgi.Pm Version2.91
Andy ArmstrongCgi.Pm Version2.92
Andy ArmstrongCgi.Pm Version2.93
Andy ArmstrongCgi.Pm Version2.94
Andy ArmstrongCgi.Pm Version2.95
Andy ArmstrongCgi.Pm Version2.96
Andy ArmstrongCgi.Pm Version2.97
Andy ArmstrongCgi.Pm Version2.98
Andy ArmstrongCgi.Pm Version2.99
Andy ArmstrongCgi.Pm Version2.751
Andy ArmstrongCgi.Pm Version2.752
Andy ArmstrongCgi.Pm Version3.00
Andy ArmstrongCgi.Pm Version3.01
Andy ArmstrongCgi.Pm Version3.02
Andy ArmstrongCgi.Pm Version3.03
Andy ArmstrongCgi.Pm Version3.04
Andy ArmstrongCgi.Pm Version3.05
Andy ArmstrongCgi.Pm Version3.06
Andy ArmstrongCgi.Pm Version3.07
Andy ArmstrongCgi.Pm Version3.08
Andy ArmstrongCgi.Pm Version3.09
Andy ArmstrongCgi.Pm Version3.10
Andy ArmstrongCgi.Pm Version3.11
Andy ArmstrongCgi.Pm Version3.12
Andy ArmstrongCgi.Pm Version3.13
Andy ArmstrongCgi.Pm Version3.14
Andy ArmstrongCgi.Pm Version3.15
Andy ArmstrongCgi.Pm Version3.16
Andy ArmstrongCgi.Pm Version3.17
Andy ArmstrongCgi.Pm Version3.18
Andy ArmstrongCgi.Pm Version3.19
Andy ArmstrongCgi.Pm Version3.20
Andy ArmstrongCgi.Pm Version3.21
Andy ArmstrongCgi.Pm Version3.22
Andy ArmstrongCgi.Pm Version3.23
Andy ArmstrongCgi.Pm Version3.24
Andy ArmstrongCgi.Pm Version3.25
Andy ArmstrongCgi.Pm Version3.26
Andy ArmstrongCgi.Pm Version3.27
Andy ArmstrongCgi.Pm Version3.28
Andy ArmstrongCgi.Pm Version3.29
Andy ArmstrongCgi.Pm Version3.30
Andy ArmstrongCgi.Pm Version3.31
Andy ArmstrongCgi.Pm Version3.32
Andy ArmstrongCgi.Pm Version3.33
Andy ArmstrongCgi.Pm Version3.34
Andy ArmstrongCgi.Pm Version3.35
Andy ArmstrongCgi.Pm Version3.36
Andy ArmstrongCgi.Pm Version3.37
Andy ArmstrongCgi.Pm Version3.38
Andy ArmstrongCgi.Pm Version3.39
Andy ArmstrongCgi.Pm Version3.40
Andy ArmstrongCgi.Pm Version3.41
Andy ArmstrongCgi.Pm Version3.42
Andy ArmstrongCgi.Pm Version3.43
Andy ArmstrongCgi.Pm Version3.44
Andy ArmstrongCgi.Pm Version3.45
Andy ArmstrongCgi.Pm Version3.46
Andy ArmstrongCgi.Pm Version3.47
Andy ArmstrongCgi.Pm Version3.48
Andy ArmstrongCgi.Pm Version3.49
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.58% 0.832
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:P/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
http://secunia.com/advisories/43068
http://www.vupen.com/english/advisories/2011/0212
http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053665.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-February/053678.html
http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html
http://openwall.com/lists/oss-security/2010/12/01/3
http://secunia.com/advisories/43033
http://secunia.com/advisories/43165
http://www.bugzilla.org/security/3.2.9/
http://www.vupen.com/english/advisories/2011/0207
http://www.vupen.com/english/advisories/2011/0271
https://bugzilla.mozilla.org/show_bug.cgi?id=591165
http://www.mandriva.com/security/advisories?name=MDVSA-2011:008
http://www.vupen.com/english/advisories/2011/0106