PT-2005-5247 · Ibm+2 · Aix+2

Published

2005-12-29

Updated

2017-07-20

CVE-2005-4579

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Hitachi Business Logic - Container (BLC) versions P-2443-9114 01-00 through 02-06 on Windows Hitachi Business Logic - Container (BLC) versions P-1M43-9111 01-01 through 02-00 on AIX

Description The issue allows remote attackers to inject arbitrary HTTP headers via unknown attack vectors in an unspecified input form, potentially leading to HTTP response splitting vulnerabilities.

Recommendations For versions P-2443-9114 01-00 through 02-06 on Windows, update to a version outside of the affected range. For versions P-1M43-9111 01-01 through 02-00 on AIX, update to a version outside of the affected range. As a temporary workaround, consider restricting access to unknown input forms until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-4579

Affected Products

Aix

Hitachi Business Logic - Container

Windows

PT-2005-5247 · Ibm+2 · Aix+2

CVE-2005-4579

Related Identifiers

Affected Products

References · 7