Vulnerability Description
index.php in BugPort 1.147 and earlier allows remote attackers to obtain sensitive information such as full path and system configuration via an invalid action parameter.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Incogen | Bugport | 1.039 |
References
- http://pridels0.blogspot.com/2005/12/bugport-multiple-vuln.html
- http://secunia.com/advisories/18282Vendor Advisory
- http://www.osvdb.org/22144
- http://www.vupen.com/english/advisories/2006/0009
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23921
- http://pridels0.blogspot.com/2005/12/bugport-multiple-vuln.html
- http://secunia.com/advisories/18282Vendor Advisory
- http://www.osvdb.org/22144
- http://www.vupen.com/english/advisories/2006/0009
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23921
FAQ
What is CVE-2005-4609?
CVE-2005-4609 is a vulnerability with a CVSS score of 5.0 (MEDIUM). index.php in BugPort 1.147 and earlier allows remote attackers to obtain sensitive information such as full path and system configuration via an invalid action parameter.
How severe is CVE-2005-4609?
CVE-2005-4609 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-4609?
Check the references section above for vendor advisories and patch information. Affected products include: Incogen Bugport.