oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

CVE 2012-1565 Insecure object reference

From: Luc ABRIC <luc.abric () oppida fr>
Date: Wed, 28 Mar 2012 11:58:51 +0000
Hi,

eZ Publish published more informations about this specific issue:
http://share.ez.no/blogs/ez/security-advisory-promptly-patch-your-ez-publish-instances2

The vulnerability detailled in the CVE is the one described by EZSA-2012-001.

We also posted more details on our blog:
http://blog-oppida.blogspot.fr/2012/03/ezpublish-object-remote-full.html

Can you update the CVE description with those informations?
Do you need help with the translation effort?

I'll send a few more CVE requests for the other vulnerabilities.

Regards,
Luc ABRIC
IT Security Expert

6 avenue du Vieil Etang - Bâtiment B
78180 Montigny-le-Bretonneux
Phone: +33 (0)1 30 14 19 00
Fax:       +33 (0)1 30 14 19 09
Mobile: +33 (0)6 26 87 62 14
luc.abric () oppida fr

www.oppida.fr
Previous By Date Next
Previous By Thread Next

Current thread: