CVE-2005-3974 - OpenCVE

Drupal 4.5.0 through 4.5.5 and 4.6.0 through 4.6.3, when running on PHP5, does not correctly enforce user privileges, which allows remote attackers to bypass the "access user profiles" permission.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

AV:N/AC:L/Au:N/C:P/I:P/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Drupal	Drupal

Configuration 1 [-]

OR	cpe:2.3:a:drupal:drupal:4.5:::::::*
	cpe:2.3:a:drupal:drupal:4.5.1:::::::*
	cpe:2.3:a:drupal:drupal:4.5.2:::::::*
	cpe:2.3:a:drupal:drupal:4.5.3:::::::*
	cpe:2.3:a:drupal:drupal:4.5.4:::::::*
	cpe:2.3:a:drupal:drupal:4.5.5:::::::*
	cpe:2.3:a:drupal:drupal:4.6:::::::*
	cpe:2.3:a:drupal:drupal:4.6.1:::::::*
	cpe:2.3:a:drupal:drupal:4.6.2:::::::*
	cpe:2.3:a:drupal:drupal:4.6.3:::::::*

No data.

References

Link	Providers
http://drupal.org/files/sa-2005-009/4.6.3.patch
http://drupal.org/files/sa-2005-009/advisory.txt
http://secunia.com/advisories/17824
http://secunia.com/advisories/18630
http://www.debian.org/security/2006/dsa-958
http://www.securityfocus.com/archive/1/418336/100/0/threaded
http://www.securityfocus.com/bid/15674
http://www.vupen.com/english/advisories/2005/2684

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-12-03T19:00:00

Updated: 2024-08-07T23:31:48.657Z

Reserved: 2005-12-03T00:00:00

Link: CVE-2005-3974

Vulnrichment

No data.

NVD

Status : Modified

Published: 2005-12-03T19:03:00.000

Modified: 2018-10-19T15:39:47.547

Link: CVE-2005-3974

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2005-11-30T00:00:00", "descriptions": [{"lang": "en", "value": "Drupal 4.5.0 through 4.5.5 and 4.6.0 through 4.6.3, when running on PHP5, does not correctly enforce user privileges, which allows remote attackers to bypass the \"access user profiles\" permission."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-19T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "ADV-2005-2684", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2005/2684"}, {"tags": ["x_refsource_MISC"], "url": "http://drupal.org/files/sa-2005-009/4.6.3.patch"}, {"name": "DSA-958", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2006/dsa-958"}, {"name": "15674", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/15674"}, {"name": "18630", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/18630"}, {"name": "20051201 [DRUPAL-SA-2005-009] Drupal 4.6.4 / 4.5.6 fixes minor access control issue", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/418336/100/0/threaded"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://drupal.org/files/sa-2005-009/advisory.txt"}, {"name": "17824", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17824"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2005-3974", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Drupal 4.5.0 through 4.5.5 and 4.6.0 through 4.6.3, when running on PHP5, does not correctly enforce user privileges, which allows remote attackers to bypass the \"access user profiles\" permission."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "ADV-2005-2684", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2005/2684"}, {"name": "http://drupal.org/files/sa-2005-009/4.6.3.patch", "refsource": "MISC", "url": "http://drupal.org/files/sa-2005-009/4.6.3.patch"}, {"name": "DSA-958", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2006/dsa-958"}, {"name": "15674", "refsource": "BID", "url": "http://www.securityfocus.com/bid/15674"}, {"name": "18630", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/18630"}, {"name": "20051201 [DRUPAL-SA-2005-009] Drupal 4.6.4 / 4.5.6 fixes minor access control issue", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/418336/100/0/threaded"}, {"name": "http://drupal.org/files/sa-2005-009/advisory.txt", "refsource": "CONFIRM", "url": "http://drupal.org/files/sa-2005-009/advisory.txt"}, {"name": "17824", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/17824"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T23:31:48.657Z"}, "title": "CVE Program Container", "references": [{"name": "ADV-2005-2684", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2005/2684"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://drupal.org/files/sa-2005-009/4.6.3.patch"}, {"name": "DSA-958", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2006/dsa-958"}, {"name": "15674", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/15674"}, {"name": "18630", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/18630"}, {"name": "20051201 [DRUPAL-SA-2005-009] Drupal 4.6.4 / 4.5.6 fixes minor access control issue", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/418336/100/0/threaded"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://drupal.org/files/sa-2005-009/advisory.txt"}, {"name": "17824", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/17824"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2005-3974", "datePublished": "2005-12-03T19:00:00", "dateReserved": "2005-12-03T00:00:00", "dateUpdated": "2024-08-07T23:31:48.657Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:drupal:drupal:4.5:*:*:*:*:*:*:*", "matchCriteriaId": "1BD40E38-71BA-42AD-BEBB-D4AD05ADDF6A", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:4.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "82317650-F136-446D-904D-354B4D26E91B", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:4.5.2:*:*:*:*:*:*:*", "matchCriteriaId": "06A1ACAF-A468-43F0-9FAD-FA3D48363843", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:4.5.3:*:*:*:*:*:*:*", "matchCriteriaId": "A68656D9-3EA0-4749-AF1B-2F9B485A02ED", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:4.5.4:*:*:*:*:*:*:*", "matchCriteriaId": "BFEDAA48-3F53-4B13-BB6A-CDC63E3922A5", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:4.5.5:*:*:*:*:*:*:*", "matchCriteriaId": "F6946291-0F27-4666-95C8-E744800D3EFB", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:4.6:*:*:*:*:*:*:*", "matchCriteriaId": "46D3F002-92E8-4CBB-8A1D-F8BCD2F782E4", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:4.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "FC5ACB7E-0CEB-4417-839A-8B06615FC981", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:4.6.2:*:*:*:*:*:*:*", "matchCriteriaId": "35BD7D35-AA9D-4589-A6BC-6D34219B7128", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:4.6.3:*:*:*:*:*:*:*", "matchCriteriaId": "611B9D43-CE88-4451-A27C-7F6F24016B4F", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Drupal 4.5.0 through 4.5.5 and 4.6.0 through 4.6.3, when running on PHP5, does not correctly enforce user privileges, which allows remote attackers to bypass the \"access user profiles\" permission."}], "id": "CVE-2005-3974", "lastModified": "2018-10-19T15:39:47.547", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 6.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2005-12-03T19:03:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://drupal.org/files/sa-2005-009/4.6.3.patch"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://drupal.org/files/sa-2005-009/advisory.txt"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/17824"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/18630"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.debian.org/security/2006/dsa-958"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/418336/100/0/threaded"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/15674"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2005/2684"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}