| CVE |  | CVE-2010-0668 |
| Status | | Candidate |
| Description | | Unspecified vulnerability in MoinMoin 1.5.x through 1.7.x, 1.8.x before 1.8.7, and 1.9.x before 1.9.2 has unknown impact and attack vectors, related to configurations that have a non-empty superuser list, the xmlrpc action enabled, the SyncPages action enabled, or OpenID configured. |
| Severity | | Medium |
| CVSS score | | 6,8 |
| CVSS vector | | (AV:N/AC:M/Au:N/C:P/I:P/A:P) |
| Phase | | Assigned (31.03.2010) |
| NVD: | | http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-0668 |
| References |  | BID : 38023 |
| | | CONFIRM : http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=5... |
| | | CONFIRM : http://hg.moinmo.in/moin/1.8/raw-file/1.8.7/docs/C... |
| | | CONFIRM : http://moinmo.in/MoinMoinRelease1.8 |
| | | CONFIRM : http://moinmo.in/SecurityFixes |
| | | CONFIRM : https://bugzilla.redhat.com/show_bug.cgi?id=565604 |
| | | DEBIAN : DSA-2014 |
| | | FEDORA : FEDORA-2010-1712 |
| | | FEDORA : FEDORA-2010-1743 |
| | | MLIST : [oss-security] 20100215 CVE Request -- MoinMoin -- 1.8.7 |
| | | MLIST : [oss-security] 20100215 Re: CVE Request -- MoinMoin -- 1.8.7 |
| | | MLIST : [oss-security] 20100221 Re: CVE Request -- MoinMoin -- 1.8.7 |
| | | OSVDB : 62043 |
| | | SECUNIA : 38444 |
| | | SECUNIA : 38709 |
| | | SECUNIA : 38903 |
| | | VUPEN : ADV-2010-0266 |
| | | VUPEN : ADV-2010-0600 |
| | | XF : moinmoin-superuser-unspecified(56002) |
| SecurityVulns: |  | Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) |
