Lucene search
HistoryJun 04, 2014 - 2:55 p.m.
CVE-2012-5057
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6.9
Confidence
Low
EPSS
0.002
Percentile
51.7%
CRLF injection vulnerability in ownCloud Server before 4.0.8 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the url path parameter.
Affected configurations
Node
owncloudowncloudRange≤4.0.7
ORowncloudowncloudMatch4.0.0
ORowncloudowncloudMatch4.0.1
ORowncloudowncloudMatch4.0.2
ORowncloudowncloudMatch4.0.3
ORowncloudowncloudMatch4.0.4
ORowncloudowncloudMatch4.0.5
ORowncloudowncloudMatch4.0.6
| Vendor | Product | Version | CPE |
|---|---|---|---|
| owncloud | owncloud | * | cpe:2.3:a:owncloud:owncloud:*:*:*:*:*:*:*:* |
| owncloud | owncloud | 4.0.0 | cpe:2.3:a:owncloud:owncloud:4.0.0:*:*:*:*:*:*:* |
| owncloud | owncloud | 4.0.1 | cpe:2.3:a:owncloud:owncloud:4.0.1:*:*:*:*:*:*:* |
| owncloud | owncloud | 4.0.2 | cpe:2.3:a:owncloud:owncloud:4.0.2:*:*:*:*:*:*:* |
| owncloud | owncloud | 4.0.3 | cpe:2.3:a:owncloud:owncloud:4.0.3:*:*:*:*:*:*:* |
| owncloud | owncloud | 4.0.4 | cpe:2.3:a:owncloud:owncloud:4.0.4:*:*:*:*:*:*:* |
| owncloud | owncloud | 4.0.5 | cpe:2.3:a:owncloud:owncloud:4.0.5:*:*:*:*:*:*:* |
| owncloud | owncloud | 4.0.6 | cpe:2.3:a:owncloud:owncloud:4.0.6:*:*:*:*:*:*:* |
Related
ubuntucve
ubuntucve
CVE-2012-5057
2014-06-04 00:00:00
cvelist
cvelist
CVE-2012-5057
2014-06-04 14:00:00
owncloud
owncloud
Server: HTTP header injection
2012-08-10 11:42:22
HTTP header injection - ownCloud
2012-08-10 17:09:21
prion
prion
Crlf injection
2014-06-04 14:55:00
cve
cve
CVE-2012-5057
2014-06-04 14:55:03
openvas
openvas
ownCloud Multiple Vulnerabilities-01 (Jul 2014)
2014-07-03 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6.9
Confidence
Low
EPSS
0.002
Percentile
51.7%
Related for NVD:CVE-2012-5057