aboutsummaryrefslogtreecommitdiffstats
path: root/recipes-devtools
diff options
context:
space:
mode:
authorNagalakshmi Veeramallu <nveeramallu@mvista.com>2018-06-29 15:38:25 +0530
committerArmin Kuster <akuster808@gmail.com>2018-07-03 15:35:25 -0700
commite5cdb6bcb6c17ad72d7a406ad5adc75aef0c2790 (patch)
tree6f16659f6dc93eaa1fd1587f761cc5c186339f07 /recipes-devtools
parent3d863f72641f930e10ed1b6211d66b2c3d04d306 (diff)
downloadmeta-security-morty.tar.gz
meta-security-morty.tar.bz2
meta-security-morty.zip
CVE-2018-11652 nikto: arbitray OS command injection via http server field.morty
CSV Injection vulnerability in Nikto 2.1.6 and earlier allows remote attackers to inject arbitrary OS commands via the Server field in an HTTP response header, which is directly injected into a CSV report. Signed-off-by: Nagalakshmi Veeramallu <nveeramallu@mvista.com> Reviewed-by: Jagadeesh Krishnanjanappa <jkrishnanjanappa@mvista.com> Signed-off-by: Armin Kuster <akuster@mvista.com>
Diffstat (limited to 'recipes-devtools')
0 files changed, 0 insertions, 0 deletions