Vulnerabilities > CVE-2004-2623 - Remote Security vulnerability in Rippy The Aggregator

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

matthew-skala

critical

NVD

Published: 2004-12-31

Updated: 2017-07-20

Summary

Unknown vulnerability in Rippy the Aggregator before 0.10, when register_globals is enabled, has unknown attack vectors and impact, possibly related to the "user-controlled filter."

Vulnerable Configurations

Part	Description	Count
Application	Matthew_Skala Matthew Skala Rippy THE Aggregator 0.1 Matthew Skala Rippy THE Aggregator 0.2 Matthew Skala Rippy THE Aggregator 0.3 Matthew Skala Rippy THE Aggregator 0.4 Matthew Skala Rippy THE Aggregator 0.5 Matthew Skala Rippy THE Aggregator 0.6 Matthew Skala Rippy THE Aggregator 0.7 Matthew Skala Rippy THE Aggregator 0.8 Matthew Skala Rippy THE Aggregator 0.9	9

References

http://ansuz.sooke.bc.ca/rippy/ChangeLog
http://freshmeat.net/projects/rippy/?branch_id=30091&release_id=173997
http://secunia.com/advisories/12769
http://securitytracker.com/id?1011582
http://www.osvdb.org/10481
https://exchange.xforce.ibmcloud.com/vulnerabilities/17674