CVE-2005-2609

CVE-2005-2609

EPSS 1.6%

index.php in VegaDNS 0.8.1, 0.9.8, and possibly other versions, allows remote attackers to obtain the full server path via an invalid VDNS_Sessid parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://secunia.com/advisories/16370 http://vegadns.org/src/current/CHANGELOG http://www.packetstormsecurity.org/0508-exploits/vegadns-dyn0.txt