ByteOS Network

CVE Vulnerability Details :

CVE-2005-3347

PUBLISHED

More Info Official Page

Assigner-debian

Assigner Org ID-79363d38-fa19-49d1-9214-5f28da3f3ac5

Published At-18 Nov, 2005 | 02:00

Updated At-07 Aug, 2024 | 23:10

▼CVE Numbering Authority (CNA)

Multiple directory traversal vulnerabilities in index.php in phpSysInfo 2.4 and earlier, as used in phpgroupware 0.9.16 and earlier, and egrouwpware before 1.0.0.009, allow remote attackers to include arbitrary files via .. (dot dot) sequences in the (1) sensor_program parameter or the (2) _SERVER[HTTP_ACCEPT_LANGUAGE] parameter, which overwrites an internal variable, a variant of CVE-2003-0536. NOTE: due to a typo in an advisory, an issue in osh was inadvertently linked to this identifier; the proper identifier for the osh issue is CVE-2005-3346.

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
http://secunia.com/advisories/17616	third-party-advisory x_refsource_SECUNIA
http://www.mandriva.com/security/advisories?name=MDKSA-2005:212	vendor-advisory x_refsource_MANDRIVA
http://www.securityfocus.com/bid/15396	vdb-entry x_refsource_BID
http://www.gentoo.org/security/en/glsa/glsa-200511-18.xml	vendor-advisory x_refsource_GENTOO
http://www.securityfocus.com/bid/15414	vdb-entry x_refsource_BID
http://secunia.com/advisories/17698	third-party-advisory x_refsource_SECUNIA
http://www.debian.org/security/2005/dsa-898	vendor-advisory x_refsource_DEBIAN
http://secunia.com/advisories/17441	third-party-advisory x_refsource_SECUNIA
http://www.securityfocus.com/archive/1/416543	mailing-list x_refsource_BUGTRAQ
http://www.debian.org/security/2005/dsa-897	vendor-advisory x_refsource_DEBIAN
http://secunia.com/advisories/17620	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/17584	third-party-advisory x_refsource_SECUNIA
http://www.hardened-php.net/advisory_212005.81.html	x_refsource_MISC
http://secunia.com/advisories/17570	third-party-advisory x_refsource_SECUNIA
http://www.debian.org/security/2005/dsa-899	vendor-advisory x_refsource_DEBIAN
http://secunia.com/advisories/17643	third-party-advisory x_refsource_SECUNIA
https://exchange.xforce.ibmcloud.com/vulnerabilities/23107	vdb-entry x_refsource_XF

Hyperlink: http://secunia.com/advisories/17616

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.mandriva.com/security/advisories?name=MDKSA-2005:212

Resource:

vendor-advisory

x_refsource_MANDRIVA

Hyperlink: http://www.securityfocus.com/bid/15396

Resource:

vdb-entry

x_refsource_BID

Hyperlink: http://www.gentoo.org/security/en/glsa/glsa-200511-18.xml

Resource:

vendor-advisory

x_refsource_GENTOO

Hyperlink: http://www.securityfocus.com/bid/15414

Resource:

vdb-entry

x_refsource_BID

Hyperlink: http://secunia.com/advisories/17698

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.debian.org/security/2005/dsa-898

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://secunia.com/advisories/17441

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.securityfocus.com/archive/1/416543

Resource:

mailing-list

x_refsource_BUGTRAQ

Hyperlink: http://www.debian.org/security/2005/dsa-897

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://secunia.com/advisories/17620

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/17584

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.hardened-php.net/advisory_212005.81.html

Resource:

x_refsource_MISC

Hyperlink: http://secunia.com/advisories/17570

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.debian.org/security/2005/dsa-899

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://secunia.com/advisories/17643

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/23107

Resource:

vdb-entry

x_refsource_XF

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://secunia.com/advisories/17616	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.mandriva.com/security/advisories?name=MDKSA-2005:212	vendor-advisory x_refsource_MANDRIVA x_transferred
http://www.securityfocus.com/bid/15396	vdb-entry x_refsource_BID x_transferred
http://www.gentoo.org/security/en/glsa/glsa-200511-18.xml	vendor-advisory x_refsource_GENTOO x_transferred
http://www.securityfocus.com/bid/15414	vdb-entry x_refsource_BID x_transferred
http://secunia.com/advisories/17698	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.debian.org/security/2005/dsa-898	vendor-advisory x_refsource_DEBIAN x_transferred
http://secunia.com/advisories/17441	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.securityfocus.com/archive/1/416543	mailing-list x_refsource_BUGTRAQ x_transferred
http://www.debian.org/security/2005/dsa-897	vendor-advisory x_refsource_DEBIAN x_transferred
http://secunia.com/advisories/17620	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/17584	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.hardened-php.net/advisory_212005.81.html	x_refsource_MISC x_transferred
http://secunia.com/advisories/17570	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.debian.org/security/2005/dsa-899	vendor-advisory x_refsource_DEBIAN x_transferred
http://secunia.com/advisories/17643	third-party-advisory x_refsource_SECUNIA x_transferred
https://exchange.xforce.ibmcloud.com/vulnerabilities/23107	vdb-entry x_refsource_XF x_transferred