Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4304


Vulnerability Score 5.0 5.0
CVE Id CVE-2005-4304
Last Modified 20 Sep 2008 12:42:38
Published 16 Dec 2005 07:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



index.php in ezDatabase 2.1.2 and earlier allows remote attackers to obtain sensitive information via an invalid cat_id parameter, which leaks the full pathname in an error message. NOTE: these details are uncertain because the original report has terminology problems and lack of relevant details. The description is based partially on feedback comments.

Vulnerable Systems


  • Indexcor Ezdatabase 2.1.2


BID - 15908

OSVDB - 21798

SECUNIA - 18043


Last Updated: 27 May 2016 10:41:15