Lucene search

[email protected]CVE-2004-2623

HistoryDec 04, 2005 - 10:00 p.m.

CVE-2004-2623

2005-12-0422:00:00

[email protected]

web.nvd.nist.gov

cve-2004-2623

rippy the aggregator

vulnerability

register_globals

user-controlled filter

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.9 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.6%

JSON

Unknown vulnerability in Rippy the Aggregator before 0.10, when register_globals is enabled, has unknown attack vectors and impact, possibly related to the “user-controlled filter.”

Affected configurations

NVD

Node

matthew_skalarippy_the_aggregatorMatch0.1

matthew_skalarippy_the_aggregatorMatch0.2

matthew_skalarippy_the_aggregatorMatch0.3

matthew_skalarippy_the_aggregatorMatch0.4

matthew_skalarippy_the_aggregatorMatch0.5

matthew_skalarippy_the_aggregatorMatch0.6

matthew_skalarippy_the_aggregatorMatch0.7

matthew_skalarippy_the_aggregatorMatch0.8

matthew_skalarippy_the_aggregatorMatch0.9

CPENameOperatorVersion
matthew_skala:rippy_the_aggregatormatthew skala rippy the aggregatoreq0.1
matthew_skala:rippy_the_aggregatormatthew skala rippy the aggregatoreq0.2
matthew_skala:rippy_the_aggregatormatthew skala rippy the aggregatoreq0.3
matthew_skala:rippy_the_aggregatormatthew skala rippy the aggregatoreq0.4
matthew_skala:rippy_the_aggregatormatthew skala rippy the aggregatoreq0.5
matthew_skala:rippy_the_aggregatormatthew skala rippy the aggregatoreq0.6
matthew_skala:rippy_the_aggregatormatthew skala rippy the aggregatoreq0.7
matthew_skala:rippy_the_aggregatormatthew skala rippy the aggregatoreq0.8
matthew_skala:rippy_the_aggregatormatthew skala rippy the aggregatoreq0.9

CPE	Name	Operator	Version
matthew_skala:rippy_the_aggregator	matthew skala rippy the aggregator	eq	0.1
matthew_skala:rippy_the_aggregator	matthew skala rippy the aggregator	eq	0.2
matthew_skala:rippy_the_aggregator	matthew skala rippy the aggregator	eq	0.3
matthew_skala:rippy_the_aggregator	matthew skala rippy the aggregator	eq	0.4
matthew_skala:rippy_the_aggregator	matthew skala rippy the aggregator	eq	0.5
matthew_skala:rippy_the_aggregator	matthew skala rippy the aggregator	eq	0.6
matthew_skala:rippy_the_aggregator	matthew skala rippy the aggregator	eq	0.7
matthew_skala:rippy_the_aggregator	matthew skala rippy the aggregator	eq	0.8
matthew_skala:rippy_the_aggregator	matthew skala rippy the aggregator	eq	0.9

References

ansuz.sooke.bc.ca/rippy/ChangeLog

freshmeat.net/projects/rippy/?branch_id=30091&release_id=173997

secunia.com/advisories/12769

securitytracker.com/id?1011582

www.osvdb.org/10481

exchange.xforce.ibmcloud.com/vulnerabilities/17674

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.9 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.6%

JSON

Related for CVE-2004-2623

nvd1 cvelist1