oss-sec mailing list archives

CVE Request -- Cherokee -- server admin vulnerable to csrf

From: Jan Lieskovsky <jlieskov () redhat com>
Date: Thu, 02 Jun 2011 18:26:18 +0200


Hello, Josh, Steve, vendors,

  this doesn't seem to have a CVE identifier yet:
  [1] http://seclists.org/fulldisclosure/2011/Jun/0

Though not sure, how much probable it is, it would get fixed,
since upstream looks to consider this not to be an issue.

Thanks && Regards, Jan.
--
Jan iankko Lieskovsky / Red Hat Security Response Team

Current thread:

CVE Request -- Cherokee -- server admin vulnerable to csrf Jan Lieskovsky (Jun 02)
- Re: CVE Request -- Cherokee -- server admin vulnerable to csrf dave b (Jun 03)
  - Re: CVE Request -- Cherokee -- server admin vulnerable to csrf Josh Bressers (Jun 06)