CVE-2005-0463

Unknown "major security flaws" in Ulog-php before 1.0, related to input validation, have unknown impact and attack vectors, probably related to SQL injection vulnerabilities in (1) host.php, (2) port.php, and (3) index.php.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://secunia.com/advisories/14321	Patch Vendor Advisory
http://securitytracker.com/id?1013220	Patch Vendor Advisory
http://www.inl.fr/article.php3?id_article=7	Patch Vendor Advisory
http://www.osvdb.org/13853	Vendor Advisory
http://www.securityfocus.com/bid/12610	Patch
http://secunia.com/advisories/14321	Patch Vendor Advisory
http://securitytracker.com/id?1013220	Patch Vendor Advisory
http://www.inl.fr/article.php3?id_article=7	Patch Vendor Advisory
http://www.osvdb.org/13853	Vendor Advisory
http://www.securityfocus.com/bid/12610	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:inl:ulog-php:0.8:::::::*
	cpe:2.3:a:inl:ulog-php:0.8.1:::::::*
	cpe:2.3:a:inl:ulog-php:0.8.2:::::::*

History

20 Nov 2024, 23:55

Type	Values Removed	Values Added
References	~~() http://secunia.com/advisories/14321 - Patch, Vendor Advisory~~	() http://secunia.com/advisories/14321 - Patch, Vendor Advisory
References	~~() http://securitytracker.com/id?1013220 - Patch, Vendor Advisory~~	() http://securitytracker.com/id?1013220 - Patch, Vendor Advisory
References	~~() http://www.inl.fr/article.php3?id_article=7 - Patch, Vendor Advisory~~	() http://www.inl.fr/article.php3?id_article=7 - Patch, Vendor Advisory
References	~~() http://www.osvdb.org/13853 - Vendor Advisory~~	() http://www.osvdb.org/13853 - Vendor Advisory
References	~~() http://www.securityfocus.com/bid/12610 - Patch~~	() http://www.securityfocus.com/bid/12610 - Patch

Information

Published : 2005-05-02 04:00

Updated : 2025-04-03 01:03

NVD link : CVE-2005-0463

Mitre link : CVE-2005-0463

CVE.ORG link : CVE-2005-0463

JSON object : View

Products Affected

inl

ulog-php

CWE

NVD-CWE-Other

{"id": "CVE-2005-0463", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2005-05-02T04:00:00.000", "references": [{"url": "http://secunia.com/advisories/14321", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1013220", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.inl.fr/article.php3?id_article=7", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.osvdb.org/13853", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/12610", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/14321", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securitytracker.com/id?1013220", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.inl.fr/article.php3?id_article=7", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.osvdb.org/13853", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/12610", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Unknown \"major security flaws\" in Ulog-php before 1.0, related to input validation, have unknown impact and attack vectors, probably related to SQL injection vulnerabilities in (1) host.php, (2) port.php, and (3) index.php."}], "lastModified": "2025-04-03T01:03:51.193", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:inl:ulog-php:0.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "75870FA2-8E67-4BB2-B4D4-197F426E354F"}, {"criteria": "cpe:2.3:a:inl:ulog-php:0.8.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "468A9C9B-D235-47B3-9091-3E0B0278EAD3"}, {"criteria": "cpe:2.3:a:inl:ulog-php:0.8.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "59E2A7D7-F0BD-41D7-B3F4-4D48D986DD6A"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}