CVE-2005-3502

Published: Nov 5, 2005Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

attachment_send.php in Cerberus Helpdesk allows remote attackers to view attachments and tickets of other users via a modified file_id parameter.

Affected (7)

Products: Cerberus: Cerberus Helpdesk

1 product

Cerberus Helpdesk

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Cerberus Cerberus Helpdesk	Version 2.0
Cerberus Cerberus Helpdesk	Version 2.1
Cerberus Cerberus Helpdesk	Version 2.2
Cerberus Cerberus Helpdesk	Version 2.3
Cerberus Cerberus Helpdesk	Version 2.4
Cerberus Cerberus Helpdesk	Version 2.5
Cerberus Cerberus Helpdesk	Version 2.6.1

References (10)

http://marc.info/?l=full-disclosure&m=113109433413298&w=2

Source: cve@mitre.org

http://secunia.com/advisories/17431

Source: cve@mitre.org

Vendor Advisory

http://securitytracker.com/id?1015153

Source: cve@mitre.org

ExploitVendor Advisory

http://www.osvdb.org/20461

Source: cve@mitre.org

http://www.securityfocus.com/bid/15315

Source: cve@mitre.org

http://marc.info/?l=full-disclosure&m=113109433413298&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/17431

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://securitytracker.com/id?1015153

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitVendor Advisory

http://www.osvdb.org/20461

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/15315

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.