W3C Jigsaw Unspecified Remote URI Parsing Vulnerability
BID:9711
Info
W3C Jigsaw Unspecified Remote URI Parsing Vulnerability
| Bugtraq ID: | 9711 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 21 2004 12:00AM |
| Updated: | Feb 21 2004 12:00AM |
| Credit: | The individual responsible for the discovery of this issue is currently unknown. |
| Vulnerable: |
W3C Jigsaw 2.2.3 W3C Jigsaw 2.2.2 W3C Jigsaw 2.2.1 W3C Jigsaw 2.2 W3C Jigsaw 2.1.2 W3C Jigsaw 2.1.1 W3C Jigsaw 2.1 W3C Jigsaw 2.0.5 W3C Jigsaw 2.0.4 W3C Jigsaw 2.0.3 W3C Jigsaw 2.0.2 W3C Jigsaw 2.0.1 W3C Jigsaw 2.0 |
| Not Vulnerable: |
W3C Jigsaw 2.2.4 |
Discussion
W3C Jigsaw Unspecified Remote URI Parsing Vulnerability
Jigsaw is prone to an unspecified remote URI parsing vulnerability. This issue is reportedly due to a failure of the application to properly parse and sanitize user supplied URI input.
The results of successful exploitation of this issue are currently unknown, however it is conjectured that this issue may be leveraged to compromise web server readable files outside of the server root directory.
Jigsaw is prone to an unspecified remote URI parsing vulnerability. This issue is reportedly due to a failure of the application to properly parse and sanitize user supplied URI input.
The results of successful exploitation of this issue are currently unknown, however it is conjectured that this issue may be leveraged to compromise web server readable files outside of the server root directory.
Exploit / POC
W3C Jigsaw Unspecified Remote URI Parsing Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
W3C Jigsaw Unspecified Remote URI Parsing Vulnerability
Solution:
The vendor has released an upgrade dealing with this issue.
W3C Jigsaw 2.0
W3C Jigsaw 2.0.1
W3C Jigsaw 2.0.2
W3C Jigsaw 2.0.3
W3C Jigsaw 2.0.4
W3C Jigsaw 2.0.5
W3C Jigsaw 2.1
W3C Jigsaw 2.1.1
W3C Jigsaw 2.1.2
W3C Jigsaw 2.2
W3C Jigsaw 2.2.1
W3C Jigsaw 2.2.2
W3C Jigsaw 2.2.3
Solution:
The vendor has released an upgrade dealing with this issue.
W3C Jigsaw 2.0
-
W3C jigsaw_2.2.4.tar.gz
Unix and Unix Like Platforms:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.tar.gz -
W3C jigsaw_2.2.4.zip
Windows Platform:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.zip
W3C Jigsaw 2.0.1
-
W3C jigsaw_2.2.4.tar.gz
Unix and Unix Like Platforms:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.tar.gz -
W3C jigsaw_2.2.4.zip
Windows Platform:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.zip
W3C Jigsaw 2.0.2
-
W3C jigsaw_2.2.4.tar.gz
Unix and Unix Like Platforms:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.tar.gz -
W3C jigsaw_2.2.4.zip
Windows Platform:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.zip
W3C Jigsaw 2.0.3
-
W3C jigsaw_2.2.4.tar.gz
Unix and Unix Like Platforms:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.tar.gz -
W3C jigsaw_2.2.4.zip
Windows Platform:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.zip
W3C Jigsaw 2.0.4
-
W3C jigsaw_2.2.4.tar.gz
Unix and Unix Like Platforms:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.tar.gz -
W3C jigsaw_2.2.4.zip
Windows Platform:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.zip
W3C Jigsaw 2.0.5
-
W3C jigsaw_2.2.4.tar.gz
Unix and Unix Like Platforms:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.tar.gz -
W3C jigsaw_2.2.4.zip
Windows Platform:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.zip
W3C Jigsaw 2.1
-
W3C jigsaw_2.2.4.tar.gz
Unix and Unix Like Platforms:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.tar.gz -
W3C jigsaw_2.2.4.zip
Windows Platform:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.zip
W3C Jigsaw 2.1.1
-
W3C jigsaw_2.2.4.tar.gz
Unix and Unix Like Platforms:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.tar.gz -
W3C jigsaw_2.2.4.zip
Windows Platform:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.zip
W3C Jigsaw 2.1.2
-
W3C jigsaw_2.2.4.tar.gz
Unix and Unix Like Platforms:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.tar.gz -
W3C jigsaw_2.2.4.zip
Windows Platform:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.zip
W3C Jigsaw 2.2
-
W3C jigsaw_2.2.4.tar.gz
Unix and Unix Like Platforms:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.tar.gz -
W3C jigsaw_2.2.4.zip
Windows Platform:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.zip
W3C Jigsaw 2.2.1
-
W3C jigsaw_2.2.4.tar.gz
Unix and Unix Like Platforms:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.tar.gz -
W3C jigsaw_2.2.4.zip
Windows Platform:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.zip
W3C Jigsaw 2.2.2
-
W3C jigsaw_2.2.4.tar.gz
Unix and Unix Like Platforms:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.tar.gz -
W3C jigsaw_2.2.4.zip
Windows Platform:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.zip
W3C Jigsaw 2.2.3
-
W3C jigsaw_2.2.4.tar.gz
Unix and Unix Like Platforms:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.tar.gz -
W3C jigsaw_2.2.4.zip
Windows Platform:
http://jigsaw.ws.org/Distrib/jigsaw_2.2.4.zip