Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1108

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-1108
Last Modified 05 Sep 2008 04:48:13
Published 02 May 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-1108

Summary

The ij_untrusted_url function in JunkBuster 2.0.2-r2, with single-threaded mode enabled, allows remote attackers to overwrite the referrer field via a crafted HTTP request.

Vulnerable Systems

Application

  • Internet Junkbuster 2.0.2 R2


References

XF - junkbuster-ijuntrustedurl-gain-access(20093)

BID - 13147

GENTOO - GLSA-200504-11

DEBIAN - DSA-713

MISC - http://bugs.gentoo.org/show_bug.cgi?id=88537

OSVDB - 15502

SECUNIA - 14932


Last Updated: 27 May 2016 10:40:02