CVE-2010-0667
published 2010-02-26CVE-2010-0667: MoinMoin 1.9 before 1.9.1 does not perform the expected clearing of the sys.argv array in situations where the GATEWAY_INTERFACE environment variable is set…
PriorityP421medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
1.87%
76.7th percentile
MoinMoin 1.9 before 1.9.1 does not perform the expected clearing of the sys.argv array in situations where the GATEWAY_INTERFACE environment variable is set, which allows remote attackers to obtain sensitive information via unspecified vectors.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| moinmo | moinmoin | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
moin information disclosure vulnerability
vendor_redhat·2010-01-19·CVSS 5.0
CVE-2010-0667 [MEDIUM] moin information disclosure vulnerability
moin information disclosure vulnerability
MoinMoin 1.9 before 1.9.1 does not perform the expected clearing of the sys.argv array in situations where the GATEWAY_INTERFACE environment variable is set, which allows remote attackers to obtain sensitive information via unspecified vectors.
OSV
MoinMoin Exposure of Sensitive Disclosure when GATEWAY_INTERFACE variable is set
osv·2022-05-02
CVE-2010-0667 [HIGH] MoinMoin Exposure of Sensitive Disclosure when GATEWAY_INTERFACE variable is set
MoinMoin Exposure of Sensitive Disclosure when GATEWAY_INTERFACE variable is set
MoinMoin 1.9 before 1.9.1 does not perform the expected clearing of the sys.argv array in situations where the `GATEWAY_INTERFACE` environment variable is set, which allows remote attackers to obtain sensitive information via unspecified vectors.
GHSA
MoinMoin Exposure of Sensitive Disclosure when GATEWAY_INTERFACE variable is set
ghsa·2022-05-02
CVE-2010-0667 [HIGH] CWE-200 MoinMoin Exposure of Sensitive Disclosure when GATEWAY_INTERFACE variable is set
MoinMoin Exposure of Sensitive Disclosure when GATEWAY_INTERFACE variable is set
MoinMoin 1.9 before 1.9.1 does not perform the expected clearing of the sys.argv array in situations where the `GATEWAY_INTERFACE` environment variable is set, which allows remote attackers to obtain sensitive information via unspecified vectors.
OSV
CVE-2010-0667: MoinMoin 1
osv·2010-02-26
CVE-2010-0667 CVE-2010-0667: MoinMoin 1
MoinMoin 1.9 before 1.9.1 does not perform the expected clearing of the sys.argv array in situations where the GATEWAY_INTERFACE environment variable is set, which allows remote attackers to obtain sensitive information via unspecified vectors.
No detection rules found.
No public exploits indexed.
http://hg.moinmo.in/moin/1.9/raw-file/1.9.1/docs/CHANGEShttp://hg.moinmo.in/moin/1.9/rev/04afdde50094http://hg.moinmo.in/moin/1.9/rev/9d8e7ce3c3a2http://marc.info/?l=oss-security&m=126625972814888&w=2http://marc.info/?l=oss-security&m=126676896601156&w=2http://moinmo.in/MoinMoinChat/Logs/moin-dev/2010-01-18http://moinmo.in/SecurityFixeshttp://secunia.com/advisories/38242http://www.openwall.com/lists/oss-security/2010/01/21/6http://www.openwall.com/lists/oss-security/2010/02/15/2http://hg.moinmo.in/moin/1.9/raw-file/1.9.1/docs/CHANGEShttp://hg.moinmo.in/moin/1.9/rev/04afdde50094http://hg.moinmo.in/moin/1.9/rev/9d8e7ce3c3a2http://marc.info/?l=oss-security&m=126625972814888&w=2http://marc.info/?l=oss-security&m=126676896601156&w=2http://moinmo.in/MoinMoinChat/Logs/moin-dev/2010-01-18http://moinmo.in/SecurityFixeshttp://secunia.com/advisories/38242http://www.openwall.com/lists/oss-security/2010/01/21/6http://www.openwall.com/lists/oss-security/2010/02/15/2
2010-02-26
Published