ID CVE-2005-3338
Summary Unspecified vulnerability in Mantis before 0.19.3, when using reminders, causes Mantis to display the real email addresses of users.
References
Vulnerable Configurations
  • cpe:2.3:a:mantis:mantis:0.19.0:*:*:*:*:*:*:*
    cpe:2.3:a:mantis:mantis:0.19.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mantis:mantis:0.19.0_rc1:*:*:*:*:*:*:*
    cpe:2.3:a:mantis:mantis:0.19.0_rc1:*:*:*:*:*:*:*
  • cpe:2.3:a:mantis:mantis:0.19.0a1:*:*:*:*:*:*:*
    cpe:2.3:a:mantis:mantis:0.19.0a1:*:*:*:*:*:*:*
  • cpe:2.3:a:mantis:mantis:0.19.0a2:*:*:*:*:*:*:*
    cpe:2.3:a:mantis:mantis:0.19.0a2:*:*:*:*:*:*:*
  • cpe:2.3:a:mantis:mantis:0.19.1:*:*:*:*:*:*:*
    cpe:2.3:a:mantis:mantis:0.19.1:*:*:*:*:*:*:*
  • cpe:2.3:a:mantis:mantis:0.19.2:*:*:*:*:*:*:*
    cpe:2.3:a:mantis:mantis:0.19.2:*:*:*:*:*:*:*
  • cpe:2.3:a:mantis:mantis:0.19.3:*:*:*:*:*:*:*
    cpe:2.3:a:mantis:mantis:0.19.3:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 05-09-2008 - 20:54)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:N/A:N
refmap via4
bid 15227
confirm http://bugs.mantisbt.org/changelog_page.php
debian DSA-905
gentoo GLSA-200510-24
secunia
  • 16506
  • 17362
  • 17654
Last major update 05-09-2008 - 20:54
Published 27-10-2005 - 10:02
Last modified 05-09-2008 - 20:54
Back to Top