Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4132

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-4132
Last Modified 07 Mar 2011 09:27:42
Published 09 Dec 2005 06:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-4132

Summary

Unspecified "security leak" vulnerability in Contenido before 4.6.4, when register_globals is on and allow_url_fopen is true, has unspecified impact and attack vectors. NOTE: it is likely that this is a PHP remote file include vulnerability.

Vulnerable Systems

Application

  • Contenido Contendio 4.5.2 Alpha

  • Contenido Contendio 4.5.6 Beta

  • Contenido Contendio 4.6.0


References

CONFIRM - http://www.contenido.org/opensourcecms/en/index-b-21-1616.html

VUPEN - ADV-2005-2819

MLIST - [fm-news] 20051208 Newsletter for Thursday, December 08th 2005

BID - 15790

OSVDB - 21566


Last Updated: 27 May 2016 10:41:11