cbcvebase.
CVE-2008-5742
published 2008-12-26

CVE-2008-5742: Multiple open redirect vulnerabilities in AIST NetCat 3.12 and earlier allow remote attackers to redirect users to arbitrary web sites and conduct phishing…

PriorityP417medium4CVSS 2.0
AVNACHAuNCNIPAP
EXPLOIT
EPSS
2.03%
78.6th percentile
Multiple open redirect vulnerabilities in AIST NetCat 3.12 and earlier allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via (1) the redirect parameter in a logoff action to modules/auth/index.php or (2) the url parameter to modules/linkmanager/redirect.php. NOTE: this was reported within an "HTTP Response Splitting" section in the original disclosure.

Affected

8 ranges
VendorProductVersion rangeFixed in
netcatnetcat<= 3.12
netcatnetcat
netcatnetcat
netcatnetcat
netcatnetcat
netcatnetcat
netcatnetcat
netcatnetcat
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.