Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4156

Overview

Vulnerability Score 9.4 9.4
CVE Id CVE-2005-4156
Last Modified 05 Sep 2008 04:56:11
Published 10 Dec 2005 09:03:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-4156

Summary

Unspecified vulnerability in Mambo 4.5 (1.0.0) through 4.5 (1.0.9), with magic_quotes_gpc disabled, allows remote attackers to read arbitrary files and possibly cause a denial of service via a query string that ends with a NULL character.

Vulnerable Systems

Application

  • Mambo Open Source 4.5 1.0.0

  • Mambo Open Source 4.5 1.0.1

  • Mambo Open Source 4.5 1.0.2

  • Mambo Open Source 4.5 1.0.3

  • Mambo Open Source 4.5 1.0.3 Beta

  • Mambo Open Source 4.5 1.0.9


References

MISC - http://www.procheckup.com/Vulner_PR0511.php

SECTRACK - 1015176


Last Updated: 27 May 2016 10:41:12