Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0854

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-0854
Last Modified 05 Sep 2008 04:47:30
Published 02 May 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-0854

Summary

betaparticle blog (bp blog), posisbly before version 4, allows remote attackers to bypass authentication and (1) upload files via a direct request to upload.asp or (2) delete files via a direct request to myFiles.asp.

Vulnerable Systems

Application

  • Betaparticle Blog 2.0

  • Betaparticle Blog 3.0


References

XF - betaparticle-blog-authentication-bypass(19781)

SECUNIA - 14668

BID - 12861

CONFIRM - http://blog.betaparticle.com/template_permalink.asp?id=68


Last Updated: 27 May 2016 10:39:57