Vulnerabilities > CVE-2005-4687

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

f-art-agency

punbb

NVD

Published: 2005-12-31

Updated: 2008-09-05

Summary

PunBB 1.2.9, used alone or with F-ART BLOG:CMS, may trust a client's IP address as specified in the X-Forwarded-For HTTP header rather than the TCP/IP stack, which allows remote attackers to misrepresent their IP address by sending a modified header.

Vulnerable Configurations

Part	Description	Count
Application	F-Art_Agency F ART Agency Blog CMS 3.0 F ART Agency Blog CMS 3.1 F ART Agency Blog CMS 3.1.2 F ART Agency Blog CMS 3.1.3 F ART Agency Blog CMS 3.1.4 F ART Agency Blog CMS 3.6.2 F ART Agency Blog CMS 3.6.4 F ART Agency Blog CMS 4.0.0 F ART Agency Blog CMS 4.0.0A F ART Agency Blog CMS 4.0.0B F ART Agency Blog CMS 4.0.0C F ART Agency Blog CMS 4.0.0D	12
Application	Punbb Punbb Punbb 1.2.1 Punbb Punbb 1.2.2 Punbb Punbb 1.2.3 Punbb Punbb 1.2.4 Punbb Punbb 1.2.5 Punbb Punbb 1.2.6 Punbb Punbb 1.2.7 Punbb Punbb 1.2.8 Punbb Punbb 1.2.9	9

Vulnerabilities > CVE-2005-4687 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2005-4687"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2005-4687