Description
Format string vulnerability in the p_cgi_error function in python/neo_cgi.c in the Python CGI Kit (neo_cgi) module for Clearsilver 0.10.5 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers that are not properly handled when creating CGI error messages using the cgi_error API function.
Affected products
- brandon_long / clearsilver0.10.5
- brandon_long / clearsilver0.1 – 0.1
- brandon_long / clearsilver0.2 – 0.2
- brandon_long / clearsilver0.2.1 – 0.2.1
- brandon_long / clearsilver0.3 – 0.3
- brandon_long / clearsilver0.4 – 0.4
- brandon_long / clearsilver0.5 – 0.5
- brandon_long / clearsilver0.6 – 0.6
- brandon_long / clearsilver0.7 – 0.7
- brandon_long / clearsilver0.7.1 – 0.7.1
- brandon_long / clearsilver0.7.2 – 0.7.2
- brandon_long / clearsilver0.8.0 – 0.8.0
- brandon_long / clearsilver0.8.1 – 0.8.1
- brandon_long / clearsilver0.9.0 – 0.9.0
- brandon_long / clearsilver0.9.1 – 0.9.1
- brandon_long / clearsilver0.9.2 – 0.9.2
- brandon_long / clearsilver0.9.3 – 0.9.3
- brandon_long / clearsilver0.9.6 – 0.9.6
- brandon_long / clearsilver0.9.7 – 0.9.7
- brandon_long / clearsilver0.9.14 – 0.9.14
- brandon_long / clearsilver0.10.1 – 0.10.1
- brandon_long / clearsilver0.10.2 – 0.10.2
- brandon_long / clearsilver0.10.3 – 0.10.3
- brandon_long / clearsilver0.10.4 – 0.10.4
References
- MISChttp://tech.groups.yahoo.com/group/ClearSilver/message/1422
- MISChttp://code.google.com/p/clearsilver/source/detail?r=919
- VENDOR_ADVISORYhttp://www.debian.org/security/2011/dsa-2355
- MISChttp://osvdb.org/77419
- MAILING_LISThttp://www.openwall.com/lists/oss-security/2011/11/27/1
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/71599
- VENDOR_ADVISORYhttp://secunia.com/advisories/47016