Vulnerability Description
Viewcat.php in (1) RUNCMS 1.1A, (2) Ciamos 0.9.2 RC1, e-Xoops 1.05 Rev3, and possibly other products based on e-Xoops (exoops), allow remote attackers to obtain sensitive information via an invalid parameter to the convertorderbytrans function, which reveals the path in a PHP error message.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ciamos | Ciamos | 0.9.2_rc1 |
| E-Xoops | E-Xoops | 1.05_rev3 |
| Runcms | Runcms | 1.1a |
References
- http://marc.info/?l=bugtraq&m=111117182417422&w=2
- http://marc.info/?l=bugtraq&m=111125588920928&w=2
- http://secunia.com/advisories/14641Patch
- http://www.ihsteam.com/download/sections/runcms%20advisory%20-%20eng.pdfVendor AdvisoryURL Repurposed
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19755
- http://marc.info/?l=bugtraq&m=111117182417422&w=2
- http://marc.info/?l=bugtraq&m=111125588920928&w=2
- http://secunia.com/advisories/14641Patch
- http://www.ihsteam.com/download/sections/runcms%20advisory%20-%20eng.pdfVendor AdvisoryURL Repurposed
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19755
FAQ
What is CVE-2005-0827?
CVE-2005-0827 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Viewcat.php in (1) RUNCMS 1.1A, (2) Ciamos 0.9.2 RC1, e-Xoops 1.05 Rev3, and possibly other products based on e-Xoops (exoops), allow remote attackers to obtain sensitive information via an invalid pa...
How severe is CVE-2005-0827?
CVE-2005-0827 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-0827?
Check the references section above for vendor advisories and patch information. Affected products include: Ciamos Ciamos, E-Xoops E-Xoops, Runcms Runcms.