CVE-2004-0259

Current Description

The check_referer() function in Formmail.php 5.0 and earlier allows remote attackers to bypass access restrictions via an empty or spoofed HTTP Referer, as demonstrated using an application on the same web server that contains a cross-site scripting (XSS) issue.

Basic Data

PublishedNovember 23, 2004
Last ModifiedJuly 11, 2017
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeNVD-CWE-Other
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityMEDIUM
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactCOMPLETE
CVSS 2 - Availability ImpactCOMPLETE
CVSS 2 - Base Score9.3
SeverityHIGH
Exploitability Score8.6
Impact Score10.0
Obtain All Privilegetrue
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationJoe Lumbroso AcksFormmail.php2.0*******
    2.3ApplicationJoe Lumbroso AcksFormmail.php5.0*******

Vulnerable Software List

VendorProductVersions
Joe Lumbroso Acks Formmail.php 2.0, 5.0

References

NameSourceURLTags
20040206 formmail (PHP) Upload file using CSShttp://marc.info/?l=bugtraq&m=107619109629629&w=2BUGTRAQ
9591http://www.securityfocus.com/bid/9591BIDVendor Advisory
jack-formmail-file-upload(15079)https://exchange.xforce.ibmcloud.com/vulnerabilities/15079XF