Vulnerabilities > CVE-2005-4579 - Input Validation vulnerability in Hitachi Business Logic

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

hitachi

NVD

Published: 2005-12-29

Updated: 2017-07-20

Summary

Multiple HTTP response splitting vulnerabilities in Hitachi Business Logic - Container (BLC) P-2443-9114 01-00 through 02-06 on Windows, and P-1M43-9111 01-01 through 02-00 on AIX, allow remote attackers to inject arbitrary HTTP headers via unknown attack vectors in an unspecified input form.

Vulnerable Configurations

Part	Description	Count
Application	Hitachi Hitachi Business Logic 1.0 Hitachi Business Logic 1.1 Hitachi Business Logic 2.0 Hitachi Business Logic 2.0.6	4

References

http://secunia.com/advisories/18213
http://securitytracker.com/id?1015420
http://www.hitachi-support.com/security_e/vuls_e/HS05-025_e/01-e.html
http://www.osvdb.org/22064
http://www.securityfocus.com/bid/16067
https://exchange.xforce.ibmcloud.com/vulnerabilities/23878