CVE-2005-4500
published 2005-12-22CVE-2005-4500: SQL injection vulnerability in MusicBox 2.3 allows remote attackers to execute arbitrary SQL commands via the (1) show and (2) type parameter. NOTE: the…
PriorityP337high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.26%
66.0th percentile
SQL injection vulnerability in MusicBox 2.3 allows remote attackers to execute arbitrary SQL commands via the (1) show and (2) type parameter. NOTE: the provenance of this information is unknown, although it was later rediscovered.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| musicbox | musicbox | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
MusicBox 2.3 - 'index.php' SQL Injection
exploitdb·2006-03-18
CVE-2005-4500 MusicBox 2.3 - 'index.php' SQL Injection
MusicBox 2.3 - 'index.php' SQL Injection
---
source: https://www.securityfocus.com/bid/17149/info
MusicBox is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
Successful exploitation of these vulnerabilities could allow an attacker to compromise the application, access or modify data, steal cookie-based authentication credentials, or even exploit vulnerabilities in the underlying database implementation. Other attacks are also possible.
http://www.example.com/music/index.php?action=top&show=5&type=[SQL]
http://www.example.com/music/index.php?action=top&show=[SQL]&type=Artists
Exploit-DB
MusicBox 2.3 - 'type' SQL Injection
exploitdb·2005-12-22
CVE-2005-4500 MusicBox 2.3 - 'type' SQL Injection
MusicBox 2.3 - 'type' SQL Injection
---
source: https://www.securityfocus.com/bid/16030/info
MusicBox is prone to an SQL injection vulnerability.
Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the underlying database implementation.
This issue affects MusicBox version 2.3; other versions may also be vulnerable.
http://www.example.com/version2.3/?action=top&show=5&type=[sql]
Exploit-DB
Oracle HTML DB 1.5/1.6 - 'wwv_flow.accept?p_t02' Cross-Site Scripting
exploitdb·2005-10-07
CVE-2005-3202 Oracle HTML DB 1.5/1.6 - 'wwv_flow.accept?p_t02' Cross-Site Scripting
Oracle HTML DB 1.5/1.6 - 'wwv_flow.accept?p_t02' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/15031/info
Oracle HTML DB is prone to cross-site scripting vulnerabilities.
An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected site.
An attacker can leverage these issues to execute SQL statements in the context of an affected user as well.
These issues was originally described and addressed in Oracle Critical Patch Update - April 2005, BID 13139 (Oracle Multiple Vulnerabilities). Due to the availability of more information, these issues are being assigned a separate BID.
http://www.example.com/pls/otn/wwv_flow.accept?p_flow_id=4500&p_flow_step_id=3&p_instance=42857654227503
Exploit-DB
Oracle HTML DB 1.5/1.6 - 'f?p=' Cross-Site Scripting
exploitdb·2005-10-07
CVE-2005-3202 Oracle HTML DB 1.5/1.6 - 'f?p=' Cross-Site Scripting
Oracle HTML DB 1.5/1.6 - 'f?p=' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/15031/info
Oracle HTML DB is prone to cross-site scripting vulnerabilities.
An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected site.
An attacker can leverage these issues to execute SQL statements in the context of an affected user as well.
These issues was originally described and addressed in Oracle Critical Patch Update - April 2005, BID 13139 (Oracle Multiple Vulnerabilities). Due to the availability of more information, these issues are being assigned a separate BID.
http://www.example.com/pls/otn/f?p=4500:alert(document.cookie);59:3239664590547916206
Exploit-DB
Tcpdump - bgp_update_print Remote Denial of Service
exploitdb·2005-06-09
CVE-2005-1267 Tcpdump - bgp_update_print Remote Denial of Service
Tcpdump - bgp_update_print Remote Denial of Service
---
/*
* 2005-05-31: Modified by [email protected] to test tcpdump infinite
* loop vulnerability.
*
* libnet 1.1
* Build a BGP4 update message with what you want as payload
*
* Copyright (c) 2003 Fr d ric Raynal
* All rights reserved.
*
* Examples:
*
* empty BGP UPDATE message:
*
* # ./bgp4_update -s 1.1.1.1 -d 2.2.2.2
* libnet 1.1 packet shaping: BGP4 update + payload[raw]
* Wrote 63 byte TCP packet; check the wire.
*
* 13:44:29.216135 1.1.1.1.26214 > 2.2.2.2.179: S [tcp sum ok]
* 16843009:16843032(23) win 32767: BGP (ttl 64, id 242, len 63)
* 0x0000 4500 003f 00f2 0000 4006 73c2 0101 0101 [email protected].....
* 0x0010 0202 0202 6666 00b3 0101 0101 0202 0202 ....ff..........
* 0x0020 5002 7fff b288 0000 0101 0101 0101 0101 P...............
Exploit-DB
Neslo Desktop Rover 3.0 - Malformed Packet Remote Denial of Service
exploitdb·2005-04-20
CVE-2005-1204 Neslo Desktop Rover 3.0 - Malformed Packet Remote Denial of Service
Neslo Desktop Rover 3.0 - Malformed Packet Remote Denial of Service
---
source: https://www.securityfocus.com/bid/13281/info
Neslo Desktop Rover is prone to a remote denial of service. Reports indicate that the software will crash when a malformed packet is processed on TCP port 61427.
A remote attacker may exploit this condition crash the software and effectively deny service for legitimate users.
20:23:48.778009 192.168.28.133.32771 > 192.168.28.129.61427: P [tcp sum ok]
1:13(12) ack 1 win 5840 (DF) (ttl 64, id 24051, len 64)
4500 0040 5df3 4000 4006 226e c0a8 1c85
c0a8 1c81 8003 eff3 90a8 d150 7cda 8afa
8018 16d0 daab 0000 0101 080a 0000 8cbe
0000 0000 6352 0100 0000 0000 0000 0000
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2006-03/0515.htmlhttp://secunia.com/advisories/18369http://www.osvdb.org/22272http://www.securityfocus.com/bid/16030http://www.vupen.com/english/advisories/2006/0124https://exchange.xforce.ibmcloud.com/vulnerabilities/24055http://archives.neohapsis.com/archives/bugtraq/2006-03/0515.htmlhttp://secunia.com/advisories/18369http://www.osvdb.org/22272http://www.securityfocus.com/bid/16030http://www.vupen.com/english/advisories/2006/0124https://exchange.xforce.ibmcloud.com/vulnerabilities/24055
2005-12-22
Published