CVE-2011-2770

EPSS 0.29%

man2html - missing input sanitization

發布日:2011/11/17修改日:2026/4/28

也稱為:DEBIAN-CVE-2011-2770

描述

Cross-site scripting (XSS) vulnerability in man2html.cgi.c in man2html 1.6, and possibly other version, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to error messages.

受影響套件(2)

Debian/man2htmlfrom 0, < 1.6g-6
Debian/man2htmlfrom 0, < 1.6f-3+lenny1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-2770