PublicDate: 2008-03-24 21:44:00 UTC
Candidate: CVE-2008-1468
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1468
Description:
 Cross-site scripting (XSS) vulnerability in namazu.cgi in Namazu before
 2.0.18 allows remote attackers to inject arbitrary web script or HTML via
 UTF-7 encoded input, related to failure to set the charset, a different
 vector than CVE-2004-1318 and CVE-2001-1350. NOTE: some of these details
 are obtained from third party information.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_namazu2:
upstream_namazu2: released (2.0.18)
dapper_namazu2: ignored (reached end-of-life)
edgy_namazu2: needed (reached end-of-life)
feisty_namazu2: needed (reached end-of-life)
gutsy_namazu2: needed (reached end-of-life)
hardy_namazu2: ignored (reached end-of-life)
intrepid_namazu2: not-affected (2.0.18-0.1)
jaunty_namazu2: not-affected (2.0.18-0.1)
karmic_namazu2: not-affected (2.0.18-0.1)
lucid_namazu2: not-affected (2.0.20-1.0)
maverick_namazu2: not-affected (2.0.20-1.0)
natty_namazu2: not-affected (2.0.20-1.0)
oneiric_namazu2: not-affected (2.0.20-1.0)
devel_namazu2: not-affected (2.0.20-1.0)