Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2008-5742

Опубликовано: 26 дек. 2008
Источник: nvd
CVSS2: 4
EPSS Низкий

Описание

Multiple open redirect vulnerabilities in AIST NetCat 3.12 and earlier allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via (1) the redirect parameter in a logoff action to modules/auth/index.php or (2) the url parameter to modules/linkmanager/redirect.php. NOTE: this was reported within an "HTTP Response Splitting" section in the original disclosure.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:netcat:netcat:*:*:*:*:*:*:*:*
Версия до 3.12 (включая)
cpe:2.3:a:netcat:netcat:1.1:*:*:*:*:*:*:*
cpe:2.3:a:netcat:netcat:2.0:*:*:*:*:*:*:*
cpe:2.3:a:netcat:netcat:2.1:*:*:*:*:*:*:*
cpe:2.3:a:netcat:netcat:2.2:*:*:*:*:*:*:*
cpe:2.3:a:netcat:netcat:2.3:*:*:*:*:*:*:*
cpe:2.3:a:netcat:netcat:2.4:*:*:*:*:*:*:*
cpe:2.3:a:netcat:netcat:3.0:*:*:*:*:*:*:*

EPSS

Процентиль: 85%
0.02588
Низкий

4 Medium

CVSS2

Дефекты

CWE-59

Связанные уязвимости

github логотип

GHSA-wmrm-c3j6-6rvh

github
больше 3 лет назад

Multiple open redirect vulnerabilities in AIST NetCat 3.12 and earlier allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via (1) the redirect parameter in a logoff action to modules/auth/index.php or (2) the url parameter to modules/linkmanager/redirect.php. NOTE: this was reported within an "HTTP Response Splitting" section in the original disclosure.

EPSS

Процентиль: 85%
0.02588
Низкий

4 Medium

CVSS2

Дефекты

CWE-59