Lucene search
MitreCVE-2005-2060HistoryJun 29, 2005 - 4:00 a.m.
CVE-2005-2060
2005-06-2904:00:00
mitre
web.nvd.nist.gov
43
cve
http response splitting
infopop ubb.threads
crlf
web content spoofing
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.6
Confidence
High
EPSS
0.005
Percentile
75.3%
Multiple HTTP Response Splitting vulnerabilities in (1) toggleshow.php, (2) togglecats.php, and (3) showprofile.php in Infopop UBB.Threads before 6.5.2 Beta allow remote attackers to spoof web content and poison web caches via CRLF (“%0d%0a”) sequences in the Cat parameter.
Affected configurations
Node
ubbcentralubb.threadsMatch6.0
ORubbcentralubb.threadsMatch6.0.1
ORubbcentralubb.threadsMatch6.0.2
ORubbcentralubb.threadsMatch6.0.3
ORubbcentralubb.threadsMatch6.1
ORubbcentralubb.threadsMatch6.1.1
ORubbcentralubb.threadsMatch6.2
ORubbcentralubb.threadsMatch6.2.1
ORubbcentralubb.threadsMatch6.2.2
ORubbcentralubb.threadsMatch6.2.3
ORubbcentralubb.threadsMatch6.3
ORubbcentralubb.threadsMatch6.3.1
ORubbcentralubb.threadsMatch6.4
ORubbcentralubb.threadsMatch6.4.1
ORubbcentralubb.threadsMatch6.4.2
ORubbcentralubb.threadsMatch6.4.3
ORubbcentralubb.threadsMatch6.4.4
ORubbcentralubb.threadsMatch6.5
ORubbcentralubb.threadsMatch6.5.1
ORubbcentralubb.threadsMatch6.5.1.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ubbcentral | ubb.threads | 6.0 | cpe:2.3:a:ubbcentral:ubb.threads:6.0:*:*:*:*:*:*:* |
| ubbcentral | ubb.threads | 6.0.1 | cpe:2.3:a:ubbcentral:ubb.threads:6.0.1:*:*:*:*:*:*:* |
| ubbcentral | ubb.threads | 6.0.2 | cpe:2.3:a:ubbcentral:ubb.threads:6.0.2:*:*:*:*:*:*:* |
| ubbcentral | ubb.threads | 6.0.3 | cpe:2.3:a:ubbcentral:ubb.threads:6.0.3:*:*:*:*:*:*:* |
| ubbcentral | ubb.threads | 6.1 | cpe:2.3:a:ubbcentral:ubb.threads:6.1:*:*:*:*:*:*:* |
| ubbcentral | ubb.threads | 6.1.1 | cpe:2.3:a:ubbcentral:ubb.threads:6.1.1:*:*:*:*:*:*:* |
| ubbcentral | ubb.threads | 6.2 | cpe:2.3:a:ubbcentral:ubb.threads:6.2:*:*:*:*:*:*:* |
| ubbcentral | ubb.threads | 6.2.1 | cpe:2.3:a:ubbcentral:ubb.threads:6.2.1:*:*:*:*:*:*:* |
| ubbcentral | ubb.threads | 6.2.2 | cpe:2.3:a:ubbcentral:ubb.threads:6.2.2:*:*:*:*:*:*:* |
| ubbcentral | ubb.threads | 6.2.3 | cpe:2.3:a:ubbcentral:ubb.threads:6.2.3:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2005-2060
2005-06-28 04:00:00
nvd
nvd
CVE-2005-2060
2005-06-29 04:00:00
nessus
nessus
UBB.threads < 6.5.2 beta Multiple Vulnerabilities
2005-04-20 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.6
Confidence
High
EPSS
0.005
Percentile
75.3%
Related for CVE-2005-2060