Lucene search

K

[email protected]CVE-2005-3323

HistoryOct 27, 2005 - 10:02 a.m.

CVE-2005-3323

2005-10-2710:02:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

28

cve-2005-3323

docutils

zope

arbitrary file inclusion

remote attack

nvd

6.5 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.023 Low

EPSS

Percentile

89.5%

docutils in Zope 2.6, 2.7 before 2.7.8, and 2.8 before 2.8.2 allows remote attackers to include arbitrary files via include directives in RestructuredText functionality.

CPENameOperatorVersion
zope:zopezopeeq2.6
zope:zopezopelt2.7.8
zope:zopezopelt2.8.2
debian:debian_linuxdebian debian linuxeq3.1
debian:debian_linuxdebian debian linuxeq3.0

References

secunia.com/advisories/17173

secunia.com/advisories/17309

secunia.com/advisories/17676

www.debian.org/security/2005/dsa-910

www.gentoo.org/security/en/glsa/glsa-200510-20.xml

www.novell.com/linux/security/advisories/2005_27_sr.html

www.securityfocus.com/bid/15082

www.zope.org/Products/Zope/Hotfix_2005-10-09/security_alert

usn.ubuntu.com/229-1/

6.5 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.023 Low

EPSS

Percentile

89.5%

Related for CVE-2005-3323

nessus4 osv1 openvas7 gentoo1 debian2 freebsd1 ubuntu1 ubuntucve1