Executive Summary

Informations
NameCVE-2005-3621First vendor Publication2005-11-16
VendorCveLast vendor Modification2008-09-05

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:P/A:N)
Cvss Base Score5Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

CRLF injection vulnerability in phpMyAdmin before 2.6.4-pl4 allows remote attackers to conduct HTTP response splitting attacks via unspecified scripts.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3621

CPE : Common Platform Enumeration

TypeDescriptionCount
Application13

OpenVAS Exploits

DateDescription
2008-09-04Name : FreeBSD Ports: phpMyAdmin
File : nvt/freebsd_phpMyAdmin5.nasl
2008-09-04Name : FreeBSD Ports: phpMyAdmin
File : nvt/freebsd_phpMyAdmin6.nasl
2008-01-17Name : Debian Security Advisory DSA 1207-1 (phpmyadmin)
File : nvt/deb_1207_1.nasl
2008-01-17Name : Debian Security Advisory DSA 1207-2 (phpmyadmin)
File : nvt/deb_1207_2.nasl

Open Source Vulnerability Database (OSVDB)

idDescription
20910phpMyAdmin header_http.inc.php HTTP Response Splitting

Nessus® Vulnerability Scanner

DateDescription
2006-11-20Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1207.nasl - Type : ACT_GATHER_INFO

Internal Sources (Detail)

SourceUrl
CONFIRMhttp://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2005-6
DEBIANhttp://www.debian.org/security/2006/dsa-1207
SECTRACKhttp://securitytracker.com/id?1015213
SECUNIAhttp://secunia.com/advisories/17578
http://secunia.com/advisories/22781
SUSEhttp://www.novell.com/linux/security/advisories/2005_28_sr.html

Alert History

If you want to see full details history, please login or register.
0
1
DateInformations
2014-02-17 10:33:31
  • Multiple Updates
2013-05-11 11:34:20
  • Multiple Updates