Vulnerability Details CVE-2005-4661
The notifyendsubs cron job in Campsite before 2.3.3 sends an e-mail message containing a certain unencrypted MySQL password, which allows remote attackers to sniff the password.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 60.2%
CVSS Severity
CVSS v2 Score 5.0
References
- http://secunia.com/advisories/17528
- http://sourceforge.net/project/shownotes.php?release_id=367403&group_id=66936
- http://www.osvdb.org/20698
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23106
- http://secunia.com/advisories/17528
- http://sourceforge.net/project/shownotes.php?release_id=367403&group_id=66936
- http://www.osvdb.org/20698
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23106
Products affected by CVE-2005-4661
-
cpe:2.3:a:campware.org:campsite:2.2.2