Candidate: CVE-2011-4293
PublicDate: 2012-07-16 10:28:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4293
Description:
 The theme implementation in Moodle 2.0.x before 2.0.4 and 2.1.x before
 2.1.1 triggers duplicate caching of Cascading Style Sheets (CSS) and
 JavaScript content, which allows remote attackers to bypass intended access
 restrictions and write to an operating-system temporary directory via
 unspecified vectors.
Ubuntu-Description:
Notes:
 jdstrand> moodle 2.0 only
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_moodle:
upstream_moodle: needs-triage
hardy_moodle: ignored (reached end-of-life)
lucid_moodle: not-affected
maverick_moodle: not-affected
natty_moodle: not-affected
oneiric_moodle: not-affected
devel_moodle: not-affected (1.9.9.dfsg2-4)