Vulnerability CVE-2005-2110 - CERT Civis.Net

Vulnerability Name:

CVE-2005-2110 (CCN-21232)

Assigned:

2005-06-28

Published:

2005-06-28

Updated:

2018-10-19

Summary:

WordPress 1.5.1.2 and earlier allows remote attackers to obtain sensitive information via (1) a direct request to menu-header.php or a "1" value in the feed parameter to (2) wp-atom.php, (3) wp-rss.php, or (4) wp-rss2.php, which reveal the path in an error message.
Note: vector [1] was later reported to also affect WordPress 2.0.1.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
4.3 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
4.3 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:H/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Obtain Information

References:

Source: MITRE
Type: CNA
CVE-2005-2110

Source: BUGTRAQ
Type: UNKNOWN
20050629 WordPress 1.5.1.2 && Earlier Multiple Vulnerabilities

Source: MISC
Type: UNKNOWN
http://NeoSecurityTeam.net/advisories/Advisory-17.txt

Source: CCN
Type: SA15831
Wordpress Multiple Vulnerabilities

Source: SECUNIA
Type: Patch, Vendor Advisory
15831

Source: CCN
Type: WordPress Web site
WordPress

Source: CCN
Type: GulfTech Research and Development
WordPress 1.5.1.2 And Earlier Multiple Vulnerabilities

Source: MISC
Type: Vendor Advisory
http://www.gulftech.org/?node=research&article_id=00085-06282005

Source: CCN
Type: OSVDB ID: 17639
WordPress menu-header.php Direct Request Path Disclosure

Source: CCN
Type: OSVDB ID: 17640
WordPress wp-atom.php Path Disclosure

Source: CCN
Type: OSVDB ID: 17641
WordPress wp-rss.php Path Disclosure

Source: CCN
Type: OSVDB ID: 17642
WordPress wp-rss2.php Path Disclosure

Source: CCN
Type: OSVDB ID: 22653
WordPress wp-includes/vars.php Direct Request Path Disclosure

Source: CCN
Type: OSVDB ID: 22654
WordPress wp-content/plugins/hello.php Direct Request Path Disclosure

Source: CCN
Type: OSVDB ID: 22655
WordPress wp-admin/upgrade-functions.php Direct Request Path Disclosure

Source: CCN
Type: OSVDB ID: 22656
WordPress wp-admin/edit-form.php Direct Request Path Disclosure

Source: CCN
Type: OSVDB ID: 22657
WordPress wp-settings.php Direct Request Path Disclosure

Source: CCN
Type: OSVDB ID: 22658
WordPress wp-admin/edit-form-comment.php Direct Request Path Disclosure

Source: BUGTRAQ
Type: UNKNOWN
20060227 WordPress 2.0.1 Multiple Vulnerabilities

Source: XF
Type: UNKNOWN
wordpress-multiple scipts-path-disclosure(21232)

Vulnerable Configuration:

Configuration 1:

cpe:/a:wordpress:wordpress:1.0:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.0.1:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.0.2:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.2:-:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.5:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.5.1:*:*:*:*:*:*:*

OR cpe:/a:wordpress:wordpress:1.5.1.2:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:wordpress:wordpress:1.5.1.2:*:*:*:*:*:*:*

Denotes that component is vulnerable