Vulnerability CVE-2005-4261
Published: 2005-12-15   Modified: 2012-02-12

Description:
Unspecified vulnerability in Positive Software Corporation CP+ (cpplus) before 2.5.5 allows attackers to have unknown impact and attack vectors, related to "a possible security flaw caused by a bug in Perl." NOTE: unless CP+ includes its own copy of Perl with CVE-2005-3962, this is a different vulnerability than CVE-2005-3962; however, there is insufficient information to be sure.

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.8/10
6.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Complete
Affected software
Positive software -> CP+ 

 References:
http://cpplus.info/feature_25.html
http://www.securityfocus.com/bid/15799
http://www.trustix.org/errata/2005/0068/
http://www.vupen.com/english/advisories/2005/2828
Copyright 2024, cxsecurity.com

 

Back to Top