CVE-2009-3619

Unspecified vulnerability in ViewVC 1.0 before 1.0.9 and 1.1 before 1.1.2 has unknown impact and remote attack vectors related to "printing illegal parameter names and values."
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 64%
VendorProductVersion
viewvcviewvc
1.0.1
viewvcviewvc
1.0.2
viewvcviewvc
1.0.3
viewvcviewvc
1.0.4
viewvcviewvc
1.0.5
viewvcviewvc
1.0.6
viewvcviewvc
1.0.7
viewvcviewvc
1.0.8
viewvcviewvc
1.1.0
viewvcviewvc
1.1.1
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
viewvc
oneiric
not-affected
natty
not-affected
maverick
not-affected
lucid
not-affected
karmic
ignored
jaunty
ignored
intrepid
ignored
hardy
ignored
dapper
dne
References
http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00004.html
http://secunia.com/advisories/36292
http://secunia.com/advisories/36311
http://viewvc.tigris.org/source/browse/%2Acheckout%2A/viewvc/tags/1.1.2/CHANGES?revision=2235&pathrev=HEAD
http://www.openwall.com/lists/oss-security/2009/10/16/10
http://www.vupen.com/english/advisories/2009/2257
https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00557.html
https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00566.html
http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00004.html
http://secunia.com/advisories/36292
http://secunia.com/advisories/36311
http://viewvc.tigris.org/source/browse/%2Acheckout%2A/viewvc/tags/1.1.2/CHANGES?revision=2235&pathrev=HEAD
http://www.openwall.com/lists/oss-security/2009/10/16/10
http://www.vupen.com/english/advisories/2009/2257
https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00557.html
https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00566.html