Vulnerability CVE-2005-4473 - CERT Civis.Net

Vulnerability Name:

CVE-2005-4473 (CCN-23680)

Assigned:

2005-12-15

Published:

2005-12-15

Updated:

2011-03-08

Summary:

Unspecified vulnerability in Macromedia JRun 4 web server (JWS) allows remote attackers to view web application source code via "a malformed URL."

CVSS v3 Severity:

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2005-4472

Source: MITRE
Type: CNA
CVE-2005-4473

Source: CCN
Type: SA18077
Macromedia JRun Server Two Vulnerabilities

Source: SECUNIA
Type: Patch, Vendor Advisory
18077

Source: CCN
Type: SECTRACK ID: 1015370
JRun Server Discloses Source Code to Remote Users and Lets Remote Users Deny Service

Source: SECTRACK
Type: Patch
1015370

Source: CCN
Type: iDEFENSE Security Advisory: 12.21.05
Macromedia JRun 4 Web Server URL Parsing Buffer Overflow Vulnerability

Source: CCN
Type: Macromedia Security Bulletin MPSB05-13
Cumulative Security Updater for JRun 4.0 server

Source: CONFIRM
Type: Patch
http://www.macromedia.com/devnet/security/security_zone/mpsb05-13.html

Source: CCN
Type: OSVDB ID: 21900
Macromedia JRun Server URL Request Overflow

Source: CCN
Type: OSVDB ID: 21901
Macromedia JRun Server Crafted URL Application Source Disclosure

Source: BID
Type: UNKNOWN
15905

Source: CCN
Type: BID-15905
Macromedia JRun Multiple Vulnerabilities

Source: CCN
Type: BID-16026
Macromedia JRun URL Parsing Remote Buffer Overflow Vulnerability

Source: VUPEN
Type: UNKNOWN
ADV-2005-2949

Source: XF
Type: UNKNOWN
jrun-long-url-bo2(23680)

Vulnerable Configuration:

Configuration 1:

cpe:/a:macromedia:jrun:4.0:*:*:*:*:*:*:*

OR cpe:/a:macromedia:jrun:4.0:sp1:*:*:*:*:*:*

OR cpe:/a:macromedia:jrun:4.0:sp1a:*:*:*:*:*:*

OR cpe:/a:macromedia:jrun:4.0_build_61650:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:macromedia:jrun:4.0:*:*:*:*:*:*:*

AND

cpe:/o:sun:solaris:8::sparc:*:*:*:*:*

OR cpe:/o:microsoft:windows_2000_advanced_server:*:*:*:*:*:*:*:*

OR cpe:/o:ibm:aix:5.1:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2000:::datacenter_server:*:*:*:*:*

OR cpe:/o:sun:solaris:9::sparc:*:*:*:*:*

OR cpe:/o:microsoft:windows_2000:::professional:*:*:*:*:*

OR cpe:/a:ibm:aix_5l:-:*:*:*:*:*:*:*

OR cpe:/o:suse:linux_enterprise_server:8:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:-::~~enterprise~~~:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:-::~~standard~~~:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:web:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::es:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::as:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1::as:*:*:*:*:*

OR cpe:/o:ibm:aix:5.3:*:*:*:*:*:*:*

OR cpe:/o:sun:solaris:10::64bit:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.3.9:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.4.2:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.4.3:*:*:*:*:*:*:*

Denotes that component is vulnerable