Lucene search

MitreCVE-2005-1482

HistoryMay 11, 2005 - 4:00 a.m.

CVE-2005-1482

2005-05-1104:00:00

mitre

web.nvd.nist.gov

cve-2005-1482

articlelive 2005

remote attackers

gain privileges

cookie modification

security vulnerability

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

High

EPSS

0.019

Percentile

88.5%

JSON

ArticleLive 2005 allows remote attackers to gain privileges by modifying the (1) auth and (2) userId fields in a cookie.

Affected configurations

Nvd

Node

interspirearticleliveMatch2005

VendorProductVersionCPE
interspirearticlelive2005cpe:2.3:a:interspire:articlelive:2005:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
interspire	articlelive	2005	cpe:2.3:a:interspire:articlelive:2005:::::::*

References

marc.info/?l=bugtraq&m=111530871724865&w=2

secunia.com/advisories/15250

securitytracker.com/id?1013895

www.digitalparadox.org/advisories/inal.txt

www.securityfocus.com/bid/13493

exchange.xforce.ibmcloud.com/vulnerabilities/20431

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

High

EPSS

0.019

Percentile

88.5%

JSON

Related for CVE-2005-1482