CVE-2010-0667

Published: Feb 26, 2010Modified: Apr 29, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

MoinMoin 1.9 before 1.9.1 does not perform the expected clearing of the sys.argv array in situations where the GATEWAY_INTERFACE environment variable is set, which allows remote attackers to obtain sensitive information via unspecified vectors.

Affected (1)

Products: Moinmo: Moinmoin

Moinmo

1 product

Moinmoin

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Moinmo Moinmoin	Version 1.9.0

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (20)

http://hg.moinmo.in/moin/1.9/raw-file/1.9.1/docs/CHANGES

Source: cve@mitre.org

http://hg.moinmo.in/moin/1.9/rev/04afdde50094

Source: cve@mitre.org

http://hg.moinmo.in/moin/1.9/rev/9d8e7ce3c3a2

Source: cve@mitre.org

http://marc.info/?l=oss-security&m=126625972814888&w=2

Source: cve@mitre.org

http://marc.info/?l=oss-security&m=126676896601156&w=2

Source: cve@mitre.org

http://moinmo.in/MoinMoinChat/Logs/moin-dev/2010-01-18

Source: cve@mitre.org

http://moinmo.in/SecurityFixes

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/38242

Source: cve@mitre.org

Vendor Advisory

http://www.openwall.com/lists/oss-security/2010/01/21/6

Source: cve@mitre.org

http://www.openwall.com/lists/oss-security/2010/02/15/2

Source: cve@mitre.org

http://hg.moinmo.in/moin/1.9/raw-file/1.9.1/docs/CHANGES