Lucene search

[email protected]CVE-2005-4579

HistoryDec 29, 2005 - 11:03 a.m.

CVE-2005-4579

2005-12-2911:03:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2005-4579

http response splitting

hitachi

business logic

container

blc

windows

aix

remote attackers

injection

http headers

nvd

7.7 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.023 Low

EPSS

Percentile

89.5%

JSON

Multiple HTTP response splitting vulnerabilities in Hitachi Business Logic - Container (BLC) P-2443-9114 01-00 through 02-06 on Windows, and P-1M43-9111 01-01 through 02-00 on AIX, allow remote attackers to inject arbitrary HTTP headers via unknown attack vectors in an unspecified input form.

CPENameOperatorVersion
hitachi:business_logichitachi business logiceq2.0.6
hitachi:business_logichitachi business logiceq2.0
hitachi:business_logichitachi business logiceq1.1
hitachi:business_logichitachi business logiceq1.0

CPE	Name	Operator	Version
hitachi:business_logic	hitachi business logic	eq	2.0.6
hitachi:business_logic	hitachi business logic	eq	2.0
hitachi:business_logic	hitachi business logic	eq	1.1
hitachi:business_logic	hitachi business logic	eq	1.0

References

secunia.com/advisories/18213

securitytracker.com/id?1015420

www.hitachi-support.com/security_e/vuls_e/HS05-025_e/01-e.html

www.osvdb.org/22064

www.securityfocus.com/bid/16067

exchange.xforce.ibmcloud.com/vulnerabilities/23878

7.7 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.023 Low

EPSS

Percentile

89.5%

JSON