Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Aug 3, 2005· Updated Apr 16, 2026

CVE-2005-2417

CVE-2005-2417

Description

Contrexx before 1.0.5 allows remote attackers to obtain sensitive information via a direct request to /config/version.xml.

Affected products

1

Astalavista It Engineering/Contrexx
cpe:2.3:a:astalavista_it_engineering:contrexx:*:*:*:*:*:*:*:*
Range: <=1.0.4

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

7

www.hardened-php.net/advisory_112005.59.htmlnvdExploitPatchVendor Advisory
marc.infonvd
secunia.com/advisories/16169nvd
securitytracker.com/idnvd
www.osvdb.org/18170nvd
www.securityfocus.com/bid/14352nvd
exchange.xforce.ibmcloud.com/vulnerabilities/21488nvd

News mentions

0

No linked articles in our index yet.