Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2061

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-2061
Last Modified 05 Sep 2008 04:50:46
Published 29 Jun 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2061

Summary

Infopop UBB.Threads before 6.5.2 Beta allows remote attackers to include arbitrary files via the language parameter in a cookie followed by a null (%00) byte.

Vulnerable Systems

Application

  • Ubbcentral Ubb.threads 6.0

  • Ubbcentral Ubb.threads 6.0.1

  • Ubbcentral Ubb.threads 6.0.2

  • Ubbcentral Ubb.threads 6.0.3

  • Ubbcentral Ubb.threads 6.1

  • Ubbcentral Ubb.threads 6.1.1

  • Ubbcentral Ubb.threads 6.2

  • Ubbcentral Ubb.threads 6.2.1

  • Ubbcentral Ubb.threads 6.2.2

  • Ubbcentral Ubb.threads 6.2.3

  • Ubbcentral Ubb.threads 6.3

  • Ubbcentral Ubb.threads 6.3.1

  • Ubbcentral Ubb.threads 6.4

  • Ubbcentral Ubb.threads 6.4.1

  • Ubbcentral Ubb.threads 6.4.2

  • Ubbcentral Ubb.threads 6.4.3

  • Ubbcentral Ubb.threads 6.4.4

  • Ubbcentral Ubb.threads 6.5

  • Ubbcentral Ubb.threads 6.5.1

  • Ubbcentral Ubb.threads 6.5.1.1


References

MISC - http://www.ubbcentral.com/boards/showflat.php/Cat/0/Number/42351/Main/42351/#Post42351

MISC - http://www.gulftech.org/?node=research&article_id=00084-06232005

BUGTRAQ - 20050624 Infopop UBB Threads Multiple Vulnerabilities


Last Updated: 27 May 2016 10:40:22