Lucene search

[email protected]NVD:CVE-2005-3621

HistoryNov 16, 2005 - 11:02 a.m.

CVE-2005-3621

2005-11-1611:02:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.7

Confidence

Low

EPSS

0.015

Percentile

87.1%

JSON

CRLF injection vulnerability in phpMyAdmin before 2.6.4-pl4 allows remote attackers to conduct HTTP response splitting attacks via unspecified scripts.

Affected configurations

Nvd

Node

phpmyadminphpmyadminMatch2.2.0

phpmyadminphpmyadminMatch2.2.7_pl1

phpmyadminphpmyadminMatch2.5.2_pl1

phpmyadminphpmyadminMatch2.5.3

phpmyadminphpmyadminMatch2.5.4

phpmyadminphpmyadminMatch2.5.5_pl1

phpmyadminphpmyadminMatch2.5.6_rc2

phpmyadminphpmyadminMatch2.5.7_pl1

phpmyadminphpmyadminMatch2.6.0_pl3

phpmyadminphpmyadminMatch2.6.1_pl3

phpmyadminphpmyadminMatch2.6.2_pl1

phpmyadminphpmyadminMatch2.6.3_pl1

phpmyadminphpmyadminMatch2.6.4_pl3

References

secunia.com/advisories/17578

secunia.com/advisories/22781

securitytracker.com/id?1015213

www.debian.org/security/2006/dsa-1207

www.novell.com/linux/security/advisories/2005_28_sr.html

www.phpmyadmin.net/home_page/security.php?issue=PMASA-2005-6

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.7

Confidence

Low

EPSS

0.015

Percentile

87.1%

JSON

Related for NVD:CVE-2005-3621

cvelist1 cve1 openvas8 debiancve1 osv2 github1 ubuntucve1 phpmyadmin1 debian2 nessus1