Vulnerabilities > CVE-2005-4025

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

help-desk-reloaded

NVD

Published: 2005-12-05

Updated: 2008-09-05

Summary

Help Desk Reloaded Free Help Desk does not remove or protect install.php once installation is complete, which allows remote attackers to gain privileges via a direct request to install.php, then navigating to accountsetup.php and creating a new user.

Vulnerable Configurations

Part	Description	Count
Application	Help_Desk_Reloaded Help Desk Reloaded Free Help Desk *	1

References

http://securitytracker.com/id?1015307

Vulnerabilities > CVE-2005-4025 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2005-4025"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2005-4025