Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2436

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-2436
Last Modified 05 Sep 2008 04:51:45
Published 03 Aug 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2436

Summary

browse.php in Website Baker Project allows remote attackers to obtain sensitive data via (1) a directory that does not exist in the dir parameter or (2) a direct request to certain php files, which reveal the path in an error message.

Vulnerable Systems

Application

  • Website Baker


References

XF - website-baker-url-path-disclosure(21633)

OSVDB - 18344

OSVDB - 18343

SECUNIA - 16263

BUGTRAQ - 20050728 Website Baker Project Multiple Vulnerabilities


Last Updated: 27 May 2016 10:40:31