CVE-2005-4520 - OpenCVE

Unspecified "port injection" vulnerabilities in filters in Mantis 1.0.0rc3 and earlier have unknown impact and attack vectors. NOTE: due to a lack of relevant details in the vendor changelog, which is the source of this description, it is unclear whether this is a duplicate of another CVE.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:L/Au:N/C:N/I:P/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Mantis	Mantis

Configuration 1 [-]

OR	cpe:2.3:a:mantis:mantis:1.0.0_rc1:::::::*
	cpe:2.3:a:mantis:mantis:1.0.0_rc2:::::::*
	cpe:2.3:a:mantis:mantis:1.0.0_rc3:::::::*
	cpe:2.3:a:mantis:mantis:1.0.0a1:::::::*
	cpe:2.3:a:mantis:mantis:1.0.0a2:::::::*
	cpe:2.3:a:mantis:mantis:1.0.0a3:::::::*

No data.

References

Link	Providers
http://secunia.com/advisories/18181/
http://secunia.com/advisories/18221
http://secunia.com/advisories/18481
http://sourceforge.net/project/shownotes.php?release_id=377932&group_id=14963
http://sourceforge.net/project/shownotes.php?release_id=377934&group_id=14963
http://www.debian.org/security/2005/dsa-944
http://www.gentoo.org/security/en/glsa/glsa-200512-12.xml
http://www.osvdb.org/22488
http://www.securityfocus.com/bid/16046/
http://www.trapkit.de/advisories/TKADV2005-11-002.txt
http://www.vupen.com/english/advisories/2005/3064

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-12-28T01:00:00

Updated: 2024-08-07T23:46:05.536Z

Reserved: 2005-12-28T00:00:00

Link: CVE-2005-4520

Vulnrichment

No data.

NVD

Status : Modified

Published: 2005-12-28T01:03:00.000

Modified: 2011-03-08T02:28:25.953

Link: CVE-2005-4520

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2005-12-22T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified \"port injection\" vulnerabilities in filters in Mantis 1.0.0rc3 and earlier have unknown impact and attack vectors. NOTE: due to a lack of relevant details in the vendor changelog, which is the source of this description, it is unclear whether this is a duplicate of another CVE."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2006-01-20T10:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "18481", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/18481"}, {"name": "22488", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/22488"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://sourceforge.net/project/shownotes.php?release_id=377932&group_id=14963"}, {"name": "16046", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/16046/"}, {"name": "18181", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/18181/"}, {"name": "ADV-2005-3064", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2005/3064"}, {"name": "18221", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/18221"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://sourceforge.net/project/shownotes.php?release_id=377934&group_id=14963"}, {"name": "GLSA-200512-12", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-12.xml"}, {"tags": ["x_refsource_MISC"], "url": "http://www.trapkit.de/advisories/TKADV2005-11-002.txt"}, {"name": "DSA-944", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2005/dsa-944"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2005-4520", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified \"port injection\" vulnerabilities in filters in Mantis 1.0.0rc3 and earlier have unknown impact and attack vectors. NOTE: due to a lack of relevant details in the vendor changelog, which is the source of this description, it is unclear whether this is a duplicate of another CVE."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "18481", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/18481"}, {"name": "22488", "refsource": "OSVDB", "url": "http://www.osvdb.org/22488"}, {"name": "http://sourceforge.net/project/shownotes.php?release_id=377932&group_id=14963", "refsource": "CONFIRM", "url": "http://sourceforge.net/project/shownotes.php?release_id=377932&group_id=14963"}, {"name": "16046", "refsource": "BID", "url": "http://www.securityfocus.com/bid/16046/"}, {"name": "18181", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/18181/"}, {"name": "ADV-2005-3064", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2005/3064"}, {"name": "18221", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/18221"}, {"name": "http://sourceforge.net/project/shownotes.php?release_id=377934&group_id=14963", "refsource": "CONFIRM", "url": "http://sourceforge.net/project/shownotes.php?release_id=377934&group_id=14963"}, {"name": "GLSA-200512-12", "refsource": "GENTOO", "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-12.xml"}, {"name": "http://www.trapkit.de/advisories/TKADV2005-11-002.txt", "refsource": "MISC", "url": "http://www.trapkit.de/advisories/TKADV2005-11-002.txt"}, {"name": "DSA-944", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2005/dsa-944"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T23:46:05.536Z"}, "title": "CVE Program Container", "references": [{"name": "18481", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/18481"}, {"name": "22488", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/22488"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://sourceforge.net/project/shownotes.php?release_id=377932&group_id=14963"}, {"name": "16046", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/16046/"}, {"name": "18181", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/18181/"}, {"name": "ADV-2005-3064", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2005/3064"}, {"name": "18221", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/18221"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://sourceforge.net/project/shownotes.php?release_id=377934&group_id=14963"}, {"name": "GLSA-200512-12", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-12.xml"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.trapkit.de/advisories/TKADV2005-11-002.txt"}, {"name": "DSA-944", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2005/dsa-944"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2005-4520", "datePublished": "2005-12-28T01:00:00", "dateReserved": "2005-12-28T00:00:00", "dateUpdated": "2024-08-07T23:46:05.536Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mantis:mantis:1.0.0_rc1:*:*:*:*:*:*:*", "matchCriteriaId": "C6DB707C-29DF-442C-BBBE-650182692A33", "vulnerable": true}, {"criteria": "cpe:2.3:a:mantis:mantis:1.0.0_rc2:*:*:*:*:*:*:*", "matchCriteriaId": "0C420189-4748-465C-96FE-DC89502F7E26", "vulnerable": true}, {"criteria": "cpe:2.3:a:mantis:mantis:1.0.0_rc3:*:*:*:*:*:*:*", "matchCriteriaId": "3B3A1BAC-F777-413E-BFB7-972C687C2D92", "vulnerable": true}, {"criteria": "cpe:2.3:a:mantis:mantis:1.0.0a1:*:*:*:*:*:*:*", "matchCriteriaId": "730BE023-C283-4775-915C-79817723917A", "vulnerable": true}, {"criteria": "cpe:2.3:a:mantis:mantis:1.0.0a2:*:*:*:*:*:*:*", "matchCriteriaId": "337E18A7-07A3-456D-868A-2002F96D7A2A", "vulnerable": true}, {"criteria": "cpe:2.3:a:mantis:mantis:1.0.0a3:*:*:*:*:*:*:*", "matchCriteriaId": "84B09B6D-EE4D-4241-B3EF-CBCB03A7F579", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Unspecified \"port injection\" vulnerabilities in filters in Mantis 1.0.0rc3 and earlier have unknown impact and attack vectors. NOTE: due to a lack of relevant details in the vendor changelog, which is the source of this description, it is unclear whether this is a duplicate of another CVE."}], "id": "CVE-2005-4520", "lastModified": "2011-03-08T02:28:25.953", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2005-12-28T01:03:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/18181/"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/18221"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/18481"}, {"source": "cve@mitre.org", "url": "http://sourceforge.net/project/shownotes.php?release_id=377932&group_id=14963"}, {"source": "cve@mitre.org", "url": "http://sourceforge.net/project/shownotes.php?release_id=377934&group_id=14963"}, {"source": "cve@mitre.org", "url": "http://www.debian.org/security/2005/dsa-944"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-12.xml"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/22488"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/16046/"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.trapkit.de/advisories/TKADV2005-11-002.txt"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2005/3064"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}