NVD

Id
6230  
Name
CVE-2008-6499  
Description
security/xamppsecurity.php in XAMPP 1.6.8 performs an extract operation on the SERVER superglobal array, which allows remote attackers to spoof critical variables, as demonstrated by setting the REMOTE_ADDR variable to 127.0.0.1.  
Reject
 
CVSS Version
2  
CVSS Score
5.5  
Severity
Medium  
CVSS Base Score
5.5  
CVSS Impact Subscore
4.9  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:N/I:P/A:P)  
Pub Date
2017-01-03  
Published
2009-03-19  
Modified Date
2009-03-20  
Seq
2008-6499  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
36794 6230 CVE-2008-6499 7384  View
36795 6230 CVE-2008-6499 xampp-xamppsecurity-ip-spoofing(47202)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
41933 JVNDB-2009-002940 XAMPP の security/xamppsecurity.php における重要な変数を偽装される脆弱性 XAMPP の security/xamppsecurity.php は、SERVER スーパーグローバル配列上で抽出操作を実行するため、重要な変数を偽装される脆弱性が存在します。 CVE-2008-6499 36612 CVE-2008-6499 6230 5.5 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-002940.html 2009-03-19 2012-06-26 View