CVE-2000-1211

Advisory

Zope 2.2.0 through 2.2.4 does not properly perform security registration for legacy names of object constructors such as DTML method objects, which could allow attackers to perform unauthorized activities.

Affected package

Affected versions

Fixed versions

Vulnerability changelog

This vulnerability has no description

Resources

• http://www.linux-mandrake.com/en/security/2000/MDKSA-2000-083.php3
• http://www.zope.org/Products/Zope/Hotfix_2000-12-08/security_alert
• http://www.redhat.com/support/errata/RHSA-2000-125.html
• http://www.iss.net/security_center/static/5824.php
• http://www.osvdb.org/6282
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-1211