7.5

CVE-2005-2148

Cacti 0.8.6e and earlier does not perform proper input validation to protect against common attacks, which allows remote attackers to execute arbitrary commands or SQL by sending a legitimate value in a POST request or cookie, then specifying the attack string in the URL, which causes the get_request_var function to return the wrong value in the $_REQUEST variable, which is cleansed while the original malicious $_GET value remains unmodified, as demonstrated in (1) graph_image.php and (2) graph.php.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
The Cacti GroupCacti Version0.8
The Cacti GroupCacti Version0.8.1
The Cacti GroupCacti Version0.8.2
The Cacti GroupCacti Version0.8.2a
The Cacti GroupCacti Version0.8.3
The Cacti GroupCacti Version0.8.3a
The Cacti GroupCacti Version0.8.4
The Cacti GroupCacti Version0.8.5
The Cacti GroupCacti Version0.8.5a
The Cacti GroupCacti Version0.8.6
The Cacti GroupCacti Version0.8.6a
The Cacti GroupCacti Version0.8.6b
The Cacti GroupCacti Version0.8.6c
The Cacti GroupCacti Version0.8.6d
The Cacti GroupCacti Version0.8.6e
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.41% 0.873
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/15490
http://www.debian.org/security/2005/dsa-764
http://securitytracker.com/id?1014361
http://sourceforge.net/mailarchive/forum.php?forum_id=10360&max_rows=25&style=flat&viewmonth=200507&viewday=1
Patch
http://www.cacti.net/downloads/patches/0.8.6e/cacti-0.8.6f_security.patch
Patch
http://www.hardened-php.net/advisory-032005.php
Patch
Vendor Advisory
http://www.hardened-php.net/advisory-042005.php
Patch
http://www.securityfocus.com/archive/1/404047/30/30/threaded
http://www.securityfocus.com/archive/1/404054
http://www.securityfocus.com/bid/14128
http://www.securityfocus.com/bid/14129
http://www.vupen.com/english/advisories/2005/0951
https://exchange.xforce.ibmcloud.com/vulnerabilities/21266
https://exchange.xforce.ibmcloud.com/vulnerabilities/21270