Executive Summary

Informations
Name CVE-2005-3621 First vendor Publication 2005-11-16
Vendor Cve Last vendor Modification 2008-09-05

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:P/A:N)
Cvss Base Score 5 Attack Range Network
Cvss Impact Score 2.9 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

CRLF injection vulnerability in phpMyAdmin before 2.6.4-pl4 allows remote attackers to conduct HTTP response splitting attacks via unspecified scripts.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3621

CPE : Common Platform Enumeration

TypeDescriptionCount
Application13

OpenVAS Exploits

DateDescription
2008-09-04Name : FreeBSD Ports: phpMyAdmin
File : nvt/freebsd_phpMyAdmin5.nasl
2008-09-04Name : FreeBSD Ports: phpMyAdmin
File : nvt/freebsd_phpMyAdmin6.nasl
2008-01-17Name : Debian Security Advisory DSA 1207-1 (phpmyadmin)
File : nvt/deb_1207_1.nasl
2008-01-17Name : Debian Security Advisory DSA 1207-2 (phpmyadmin)
File : nvt/deb_1207_2.nasl

Open Source Vulnerability Database (OSVDB)

idDescription
20910phpMyAdmin header_http.inc.php HTTP Response Splitting

Nessus® Vulnerability Scanner

DateDescription
2006-11-20Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1207.nasl - Type : ACT_GATHER_INFO

Internal Sources (Detail)

SourceUrl
CONFIRM http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2005-6
DEBIAN http://www.debian.org/security/2006/dsa-1207
SECTRACK http://securitytracker.com/id?1015213
SECUNIA http://secunia.com/advisories/17578
http://secunia.com/advisories/22781
SUSE http://www.novell.com/linux/security/advisories/2005_28_sr.html

Alert History

If you want to see full details history, please login or register.
0
1
DateInformations
2014-02-17 10:33:31
  • Multiple Updates
2013-05-11 11:34:20
  • Multiple Updates