CVE

Id
53506  
CVE No.
CVE-2012-0263  
Status
Candidate  
Description
monitor/index.php in op5 Monitor and op5 Appliance before 5.5.1 allows remote authenticated users to obtain sensitive information such as database and user credentials via error messages that are triggered by (1) a malformed hoststatustypes parameter to status/service/all or (2) a crafted request to config.  
Phase
Assigned (20111221)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
564793 53506 CVE-2012-0263 FULLDISC:20120107 OP5 Monitor - Multiple Vulnerabilities  View
564794 53506 CVE-2012-0263 URL:http://seclists.org/fulldisclosure/2012/Jan/62  View
564795 53506 CVE-2012-0263 MISC:http://www.ekelow.se/file_uploads/Advisories/ekelow-aid-2012-01.pdf  View
564796 53506 CVE-2012-0263 CONFIRM:http://www.op5.com/news/support-news/fixed-vulnerabilities-op5-monitor-op5-appliance/  View
564797 53506 CVE-2012-0263 CONFIRM:https://bugs.op5.com/view.php?id=5094  View
564798 53506 CVE-2012-0263 OSVDB:78067  View
564799 53506 CVE-2012-0263 URL:http://www.osvdb.org/78067  View
564800 53506 CVE-2012-0263 SECUNIA:47344  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
25454 JVNDB-2012-001161 Yahoo! Messenger の YImage.dll の CYImage::LoadJPG メソッドにおける整数オーバーフローの脆弱性 Yahoo! Messenger の YImage.dll の CYImage::LoadJPG メソッドには、写真の共有が有効になっている際に、整数オーバーフローの脆弱性が存在します。 CVE-2012-0268 53506 5.1 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001161.html  View