CVE Vulnerabilities

CVE-2008-6548

Published: Mar 30, 2009 | Modified: Mar 30, 2009
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

The rst parser (parser/text_rst.py) in MoinMoin 1.6.1 does not check the ACL of an included page, which allows attackers to read unauthorized include files via unknown vectors.

Affected Software

Name Vendor Start Version End Version
Moinmoin Moinmo 1.6.1 1.6.1
Moin Ubuntu dapper *
Moin Ubuntu gutsy *
Moin Ubuntu upstream *

References