exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 5 of 5 RSS Feed

CVE-2005-3348

Status Candidate

Overview

HTTP response splitting vulnerability in index.php in phpSysInfo 2.4 and earlier, as used in phpgroupware 0.9.16 and earlier, and egroupware before 1.0.0.009, allows remote attackers to spoof web content and poison web caches via CRLF sequences in the charset parameter.

Related Files

Debian Linux Security Advisory 899-1
Posted Nov 20, 2005
Authored by Debian | Site security.debian.org

Debian Security Advisory DSA 899-1 - Several vulnerabilities have been discovered in egroupware, a web-based groupware suite.

tags | advisory, web, vulnerability
systems | linux, debian
advisories | CVE-2005-0870, CVE-2005-2600, CVE-2005-3347, CVE-2005-3348
SHA-256 | ce5dc61b6ab7f174ffd0578f4d7b299207ee622bfdae9b8fd35c151559cf6fca
Debian Linux Security Advisory 898-1
Posted Nov 20, 2005
Authored by Debian | Site security.debian.org

Debian Security Advisory DSA 898-1 - Several vulnerabilities have been discovered in phpsysinfo, a PHP based host information application.

tags | advisory, php, vulnerability
systems | linux, debian
advisories | CVE-2005-0870, CVE-2005-3347, CVE-2005-3348
SHA-256 | c7619e34f0202f1767d8efde397aed15459fad6c27137844169689edb036be56
Mandriva Linux Security Advisory 2005.212
Posted Nov 20, 2005
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Updated egroupware packages to address phpldapadmin, phpsysinfo vulnerabilities.

tags | advisory, vulnerability
systems | linux, mandriva
advisories | CVE-2005-2654, CVE-2005-2792, CVE-2005-2793, CVE-2005-0869, CVE-2005-0870, CVE-2005-3347, CVE-2005-3348
SHA-256 | 4c7153c16054a380d5a7b9f4b9ed2f8422a15efd41e1749ec592bb4a858174fc
Debian Linux Security Advisory 897-1
Posted Nov 20, 2005
Authored by Debian | Site security.debian.org

Debian Security Advisory DSA 897-1 - Several vulnerabilities have been discovered in phpsysinfo, a PHP based host information application.

tags | advisory, php, vulnerability
systems | linux, debian
advisories | CVE-2005-0870, CVE-2005-3347, CVE-2005-3348
SHA-256 | e45a4727d0dbabf891df3473359c64c7b6c1e5efeff94f588a45e498240caa09
Hardened-PHP Project Security Advisory 2005-21.81
Posted Nov 15, 2005
Authored by Christopher Kunz, Hardened-PHP Project | Site hardened-php.net

phpSysInfo versions 2.4 and below suffer from cross site scripting, HTTP response splitting, and arbitrary file inclusion flaws.

tags | exploit, web, arbitrary, xss, file inclusion
advisories | CVE-2005-3347, CVE-2005-3348
SHA-256 | 0e06964507a7ccca53a11efcf06c1e94edfb9afdc2311b04881c95bf3b588fcd
Page 1 of 1
Back1Next

File Archive:

November 2022

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    16 Files
  • 2
    Nov 2nd
    17 Files
  • 3
    Nov 3rd
    17 Files
  • 4
    Nov 4th
    11 Files
  • 5
    Nov 5th
    0 Files
  • 6
    Nov 6th
    0 Files
  • 7
    Nov 7th
    3 Files
  • 8
    Nov 8th
    59 Files
  • 9
    Nov 9th
    12 Files
  • 10
    Nov 10th
    6 Files
  • 11
    Nov 11th
    11 Files
  • 12
    Nov 12th
    1 Files
  • 13
    Nov 13th
    0 Files
  • 14
    Nov 14th
    9 Files
  • 15
    Nov 15th
    33 Files
  • 16
    Nov 16th
    53 Files
  • 17
    Nov 17th
    11 Files
  • 18
    Nov 18th
    14 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    26 Files
  • 22
    Nov 22nd
    22 Files
  • 23
    Nov 23rd
    10 Files
  • 24
    Nov 24th
    9 Files
  • 25
    Nov 25th
    11 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    20 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Hosting By
Rokasec
close