Lucene search

[email protected]CVE-2005-4144

HistoryDec 10, 2005 - 11:03 a.m.

CVE-2005-4144

2005-12-1011:03:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2005-4144

lyris listmanager

sql injection

remote attackers

nvd

7.6 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.018 Low

EPSS

Percentile

88.1%

JSON

Lyris ListManager 5.0 through 8.9a allows remote attackers to add “ORDER BY” columns to SQL queries via unusual whitespace characters in the orderby parameter, such as (1) newlines and (2) 0xFF (ASCII 255) characters, which are interpreted as whitespace.

CPENameOperatorVersion
lyris:list_managerlyris list managereq5.0
lyris:list_managerlyris list managereq7.0
lyris:list_managerlyris list managereq6.0
lyris:list_managerlyris list managereq8.0
lyris:list_managerlyris list managereq8.8a

CPE	Name	Operator	Version
lyris:list_manager	lyris list manager	eq	5.0
lyris:list_manager	lyris list manager	eq	7.0
lyris:list_manager	lyris list manager	eq	6.0
lyris:list_manager	lyris list manager	eq	8.0
lyris:list_manager	lyris list manager	eq	8.8a

References

archives.neohapsis.com/archives/fulldisclosure/2005-12/0349.html

metasploit.com/research/vulns/lyris_listmanager/

secunia.com/advisories/17943

www.osvdb.org/21549

www.securityfocus.com/archive/1/419077/100/0/threaded

www.securityfocus.com/bid/15787

www.vupen.com/english/advisories/2005/2820

7.6 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.018 Low

EPSS

Percentile

88.1%

JSON

Related for CVE-2005-4144

nessus1