10/4/02
CVE 2002-0688
A flaw in the security settings of ZCatalog objects could
allow anonymous users or untrusted code to call arbitrary
methods of catalog indexes. Zope 2.5.1 and earlier are
affected by this vulnerability if ZCatalog's plug-in
index support is enabled.
10/4/02
CVE 2002-0687
If the Zope server allows "through the web" code such as
Python scripts, DTML methods, or page templates, a remote
untrusted user could shut down the server by injecting
specially crafted headers into the response. Zope 2.4.x
versions prior to 2.4.4 beta 2 and Zope 2.5.x versions prior
to 2.5.1 beta 2 are affected by this vulnerability.
3/8/02
CVE 2002-0170
Due to an issue involving the checking of security for
objects with proxy roles, users defined in subfolders of
a site could access objects at higher levels that they should
not have permission to access. Zope versions 2.5.1b1, 2.5.0,
and 2.2.0 through 2.4.3 are affected by this vulnerability.
3/8/02
CVE 2001-1227
CAN 2001-1278
In versions 2.2.0 through 2.4.1, Zope does not check the
permissions of a method invoked through the fmt
attribute of a DTML tag. This could allow
users with limited access to methods that they should not
have permission to access.
2/27/01
CAN 2001-0568
In Zope version 2.3.1 b1 and earlier,
a user with through-the-web scripting capabilities can view and
assign class attributes to ZClasses, possibly allowing them
to make inappropriate changes to ZClass instances.
2/27/01
CVE 2000-0483
An inadequately protected method in one of
the base classes in the DocumentTemplate package could allow
the contents of DTMLDocuments or DTMLMethods to be changed
remotely or through DTML code without forcing proper user
authorization. All Zope versions prior to 2.1.7, and Zope
2.2 beta versions prior to 2.2 beta 1 are affected by this
vulnerability.
2/27/01
CVE 2001-0128
A vulnerability in the calculation of Local Roles in Zope
2.2.4 and earlier could allow a local user to gain privileges.
Zope fails to properly check for folder hierarchy when calculating local roles.
A local attacker could use this vulnerability to gain unauthorized access
to folders.
2/27/01
CVE 2000-0725
A vulnerability in the getRoles method of user objects contained
in the default UserFolder implementation could
allow users with the ability to edit DTML to
give themselves extra roles for the duration of a single
request. All Zope versions prior to 2.2.1 beta 1 are affected by
this vulnerability.
2/27/01
CVE 2000-0062
A problem in the DTML implementation in
Zope 2.x versions prior to 2.1.2 and Zope 1.x versions
prior to 1.10.4 could allow an attacker to perform
unauthorized activities on the server.
For users who are unable or do not wish to upgrade, hotfixes have been made available to fix each of the above vulnerabilities.
For general information about Zope, see An Introduction to Zope by Brian Lloyd.