Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3975

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2005-3975
Last Modified 07 Mar 2011 09:27:27
Published 03 Dec 2005 02:03:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2005-3975

Summary

Interpretation conflict in file.inc in Drupal 4.5.0 through 4.5.5 and 4.6.0 through 4.6.3 allows remote authenticated users to inject arbitrary web script or HTML via HTML in a file with a GIF or JPEG file extension, which causes the HTML to be executed by a victim who views the file in Internet Explorer as a result of CVE-2005-3312. NOTE: it could be argued that this vulnerability is due to a design flaw in Internet Explorer and the proper fix should be in that browser; if so, then this should not be treated as a vulnerability in Drupal.

Vulnerable Systems

Application

  • Drupal 4.5.0

  • Drupal 4.5.1

  • Drupal 4.5.2

  • Drupal 4.5.3

  • Drupal 4.5.4

  • Drupal 4.5.5

  • Drupal 4.6.0

  • Drupal 4.6.1

  • Drupal 4.6.2

  • Drupal 4.6.3


References

BID - 15663

BUGTRAQ - 20051201 [DRUPAL-SA-2005-008] Drupal 4.6.4 / 4.5.6 fixes XSS and HTTP header injection issue

SECUNIA - 17824

CONFIRM - http://drupal.org/files/sa-2005-008/advisory.txt

VUPEN - ADV-2005-2684

MISC - http://drupal.org/files/sa-2005-008/4.6.3.patch

DEBIAN - DSA-958

SREASON - 220

SECUNIA - 18630


Last Updated: 27 May 2016 10:41:08