CVE-2005-3330 - OpenCVE

The _httpsrequest function in Snoopy 1.2, as used in products such as (1) MagpieRSS, (2) WordPress, (3) Ampache, and (4) Jinzora, allows remote attackers to execute arbitrary commands via shell metacharacters in an HTTPS URL to an SSL protected web page, which is not properly handled by the fetch function.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Snoopy	Snoopy

Configuration 1 [-]

cpe:2.3:a:snoopy:snoopy:1.2:*:*:*:*:*:*:*

References

Link	Resource
http://marc.info/?l=bugtraq&m=113028858316430&w=2
http://marc.info/?l=bugtraq&m=113062897231412&w=2
http://secunia.com/advisories/17330
http://secunia.com/advisories/17455	Vendor Advisory
http://secunia.com/advisories/17779	Vendor Advisory
http://secunia.com/advisories/17887	Vendor Advisory
http://securityreason.com/securityalert/117
http://securitytracker.com/id?1015104
http://sourceforge.net/project/shownotes.php?release_id=368750
http://sourceforge.net/project/shownotes.php?release_id=375385
http://www.osvdb.org/20316
http://www.securityfocus.com/bid/15213
http://www.vupen.com/english/advisories/2005/2202	Vendor Advisory
http://www.vupen.com/english/advisories/2005/2335	Vendor Advisory
http://www.vupen.com/english/advisories/2005/2727	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/22874
https://svn.ampache.org/branches/3.3.1/docs/CHANGELOG

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2005-10-27T04:00:00

Updated: 2017-07-10T14:57:01

Reserved: 2005-10-27T00:00:00

Link: CVE-2005-3330

JSON object: View

NVD Information

Status : Modified

Published: 2005-10-27T10:02:00.000

Modified: 2017-07-11T01:33:09.750

Link: CVE-2005-3330

JSON object: View

Redhat Information

No data.

CWE

CWE-20

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2005-10-25T00:00:00", "descriptions": [{"lang": "en", "value": "The _httpsrequest function in Snoopy 1.2, as used in products such as (1) MagpieRSS, (2) WordPress, (3) Ampache, and (4) Jinzora, allows remote attackers to execute arbitrary commands via shell metacharacters in an HTTPS URL to an SSL protected web page, which is not properly handled by the fetch function."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-10T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "snoopy-httpsrequest-command-injection(22874)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22874"}, {"name": "17887", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17887"}, {"name": "20051025 SEC-Consult SA 20051025-0 :: Snoopy Remote Code Execution Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=113028858316430&w=2"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://svn.ampache.org/branches/3.3.1/docs/CHANGELOG"}, {"name": "17455", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17455"}, {"name": "20316", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/20316"}, {"name": "117", "tags": ["third-party-advisory", "x_refsource_SREASON"], "url": "http://securityreason.com/securityalert/117"}, {"name": "15213", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/15213"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://sourceforge.net/project/shownotes.php?release_id=375385"}, {"name": "1015104", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1015104"}, {"name": "20051027 Re: [Full-disclosure] SEC-Consult SA 20051025-0 :: Snoopy Remote", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=113062897231412&w=2"}, {"name": "ADV-2005-2727", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2005/2727"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://sourceforge.net/project/shownotes.php?release_id=368750"}, {"name": "ADV-2005-2335", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2005/2335"}, {"name": "17330", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17330"}, {"name": "17779", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17779"}, {"name": "ADV-2005-2202", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2005/2202"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2005-3330", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The _httpsrequest function in Snoopy 1.2, as used in products such as (1) MagpieRSS, (2) WordPress, (3) Ampache, and (4) Jinzora, allows remote attackers to execute arbitrary commands via shell metacharacters in an HTTPS URL to an SSL protected web page, which is not properly handled by the fetch function."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "snoopy-httpsrequest-command-injection(22874)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22874"}, {"name": "17887", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/17887"}, {"name": "20051025 SEC-Consult SA 20051025-0 :: Snoopy Remote Code Execution Vulnerability", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=113028858316430&w=2"}, {"name": "https://svn.ampache.org/branches/3.3.1/docs/CHANGELOG", "refsource": "CONFIRM", "url": "https://svn.ampache.org/branches/3.3.1/docs/CHANGELOG"}, {"name": "17455", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/17455"}, {"name": "20316", "refsource": "OSVDB", "url": "http://www.osvdb.org/20316"}, {"name": "117", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/117"}, {"name": "15213", "refsource": "BID", "url": "http://www.securityfocus.com/bid/15213"}, {"name": "http://sourceforge.net/project/shownotes.php?release_id=375385", "refsource": "CONFIRM", "url": "http://sourceforge.net/project/shownotes.php?release_id=375385"}, {"name": "1015104", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1015104"}, {"name": "20051027 Re: [Full-disclosure] SEC-Consult SA 20051025-0 :: Snoopy Remote", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=113062897231412&w=2"}, {"name": "ADV-2005-2727", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2005/2727"}, {"name": "http://sourceforge.net/project/shownotes.php?release_id=368750", "refsource": "CONFIRM", "url": "http://sourceforge.net/project/shownotes.php?release_id=368750"}, {"name": "ADV-2005-2335", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2005/2335"}, {"name": "17330", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/17330"}, {"name": "17779", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/17779"}, {"name": "ADV-2005-2202", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2005/2202"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2005-3330", "datePublished": "2005-10-27T04:00:00", "dateReserved": "2005-10-27T00:00:00", "dateUpdated": "2017-07-10T14:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:snoopy:snoopy:1.2:*:*:*:*:*:*:*", "matchCriteriaId": "302B4166-6B2C-4F59-9B8C-CF52F9F8AEA5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The _httpsrequest function in Snoopy 1.2, as used in products such as (1) MagpieRSS, (2) WordPress, (3) Ampache, and (4) Jinzora, allows remote attackers to execute arbitrary commands via shell metacharacters in an HTTPS URL to an SSL protected web page, which is not properly handled by the fetch function."}], "id": "CVE-2005-3330", "lastModified": "2017-07-11T01:33:09.750", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": true, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2005-10-27T10:02:00.000", "references": [{"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=113028858316430&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=113062897231412&w=2"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/17330"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/17455"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/17779"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/17887"}, {"source": "cve@mitre.org", "url": "http://securityreason.com/securityalert/117"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1015104"}, {"source": "cve@mitre.org", "url": "http://sourceforge.net/project/shownotes.php?release_id=368750"}, {"source": "cve@mitre.org", "url": "http://sourceforge.net/project/shownotes.php?release_id=375385"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/20316"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/15213"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2005/2202"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2005/2335"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2005/2727"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22874"}, {"source": "cve@mitre.org", "url": "https://svn.ampache.org/branches/3.3.1/docs/CHANGELOG"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}