Vulnerability-Lookup

CVE-2011-1905 (GCVE-0-2011-1905)

Vulnerability from cvelistv5 – Published: 2011-05-05 14:00 – Updated: 2024-09-16 23:05

Summary

Severity

No CVSS data available.

CWE

Assigner

mitre

References

3 references

URL	Tags
https://support.proofpoint.com/article.cgi?articl…	x_refsource_MISC
http://www.kb.cert.org/vuls/id/790980	third-party-advisoryx_refsource_CERT-VN
http://www.clearskies.net/documents/css-advisory-…	x_refsource_MISC

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T22:46:00.778Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.proofpoint.com/article.cgi?article_id=338413"
          },
          {
            "name": "VU#790980",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/790980"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified administrative modules in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allow remote attackers to hijack the authentication of administrators via unknown vectors."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2011-05-05T14:00:00.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.proofpoint.com/article.cgi?article_id=338413"
        },
        {
          "name": "VU#790980",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/790980"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2011-1905",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified administrative modules in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allow remote attackers to hijack the authentication of administrators via unknown vectors."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.proofpoint.com/article.cgi?article_id=338413",
              "refsource": "MISC",
              "url": "https://support.proofpoint.com/article.cgi?article_id=338413"
            },
            {
              "name": "VU#790980",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/790980"
            },
            {
              "name": "http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php",
              "refsource": "MISC",
              "url": "http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2011-1905",
    "datePublished": "2011-05-05T14:00:00.000Z",
    "dateReserved": "2011-05-05T00:00:00.000Z",
    "dateUpdated": "2024-09-16T23:05:32.389Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2011-1905",
      "date": "2026-06-08",
      "epss": "0.00214",
      "percentile": "0.43993"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2011-1905\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2011-05-05T14:55:03.340\",\"lastModified\":\"2026-04-29T01:13:23.040\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified administrative modules in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allow remote attackers to hijack the authentication of administrators via unknown vectors.\"},{\"lang\":\"es\",\"value\":\"M\u00faltiples vulnerabilidades de falsificaci\u00f3n de petici\u00f3n en sitios cruzados (CSRF) en m\u00f3dulos administrativos no especificados en Proofpoint Messaging Security Gateway v6.2.0.263:6.2.0.237 y anteriores en Proofpoint Protection Server v5.5.3, v5.5.4, v5.5.5, v6.0.2, v6.1.1, y v6.2.0, permite a atacantes remotos secuestrar la autenticaci\u00f3n de los administradores a trav\u00e9s de vectores desconocidos.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-352\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:proofpoint:messaging_security_gateway:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"6.2.0.263\\\\:6.2.0.237\",\"matchCriteriaId\":\"3E42E896-CEBA-4C28-B8D7-7844CF749673\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:proofpoint:protection_server:5.5.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9467D393-B158-40CC-B1E1-3D054B0AEC66\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:proofpoint:protection_server:5.5.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"15B44F43-7680-4997-9AC4-0EF177179B95\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:proofpoint:protection_server:5.5.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5D8B6E13-9CBB-4193-8C94-5C5AC07CC801\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:proofpoint:protection_server:6.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6BEB196A-5653-4A49-8805-329E34E95372\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:proofpoint:protection_server:6.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"99E0E268-A942-4BB4-9555-735C05D90F1F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:proofpoint:protection_server:6.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"32D2B690-C33C-4F13-80BD-CA9260C941DF\"}]}]}],\"references\":[{\"url\":\"http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.kb.cert.org/vuls/id/790980\",\"source\":\"cve@mitre.org\",\"tags\":[\"US Government Resource\"]},{\"url\":\"https://support.proofpoint.com/article.cgi?article_id=338413\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.kb.cert.org/vuls/id/790980\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"US Government Resource\"]},{\"url\":\"https://support.proofpoint.com/article.cgi?article_id=338413\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

FKIE_CVE-2011-1905

Vulnerability from fkie_nvd - Published: 2011-05-05 14:55 - Updated: 2026-04-29 01:13

Severity

Summary

References

URL	Tags
cve@mitre.org	http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php
cve@mitre.org	http://www.kb.cert.org/vuls/id/790980	US Government Resource
cve@mitre.org	https://support.proofpoint.com/article.cgi?article_id=338413
af854a3a-2127-422b-91ae-364da2661108	http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/790980	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	https://support.proofpoint.com/article.cgi?article_id=338413

Impacted products

Vendor	Product	Version
proofpoint	messaging_security_gateway	*
proofpoint	protection_server	5.5.3
proofpoint	protection_server	5.5.4
proofpoint	protection_server	5.5.5
proofpoint	protection_server	6.0.2
proofpoint	protection_server	6.1.1
proofpoint	protection_server	6.2.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:proofpoint:messaging_security_gateway:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "3E42E896-CEBA-4C28-B8D7-7844CF749673",
              "versionEndIncluding": "6.2.0.263\\:6.2.0.237",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:proofpoint:protection_server:5.5.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "9467D393-B158-40CC-B1E1-3D054B0AEC66",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:proofpoint:protection_server:5.5.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "15B44F43-7680-4997-9AC4-0EF177179B95",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:proofpoint:protection_server:5.5.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "5D8B6E13-9CBB-4193-8C94-5C5AC07CC801",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:proofpoint:protection_server:6.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "6BEB196A-5653-4A49-8805-329E34E95372",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:proofpoint:protection_server:6.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "99E0E268-A942-4BB4-9555-735C05D90F1F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:proofpoint:protection_server:6.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "32D2B690-C33C-4F13-80BD-CA9260C941DF",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified administrative modules in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allow remote attackers to hijack the authentication of administrators via unknown vectors."
    },
    {
      "lang": "es",
      "value": "M\u00faltiples vulnerabilidades de falsificaci\u00f3n de petici\u00f3n en sitios cruzados (CSRF) en m\u00f3dulos administrativos no especificados en Proofpoint Messaging Security Gateway v6.2.0.263:6.2.0.237 y anteriores en Proofpoint Protection Server v5.5.3, v5.5.4, v5.5.5, v6.0.2, v6.1.1, y v6.2.0, permite a atacantes remotos secuestrar la autenticaci\u00f3n de los administradores a trav\u00e9s de vectores desconocidos."
    }
  ],
  "id": "CVE-2011-1905",
  "lastModified": "2026-04-29T01:13:23.040",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.8,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2011-05-05T14:55:03.340",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/790980"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://support.proofpoint.com/article.cgi?article_id=338413"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/790980"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://support.proofpoint.com/article.cgi?article_id=338413"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-352"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-XPQW-3MMQ-RPCV

Vulnerability from github – Published: 2022-05-17 05:41 – Updated: 2022-05-17 05:41

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2011-1905"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-352"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2011-05-05T14:55:00Z",
    "severity": "MODERATE"
  },
  "details": "Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified administrative modules in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allow remote attackers to hijack the authentication of administrators via unknown vectors.",
  "id": "GHSA-xpqw-3mmq-rpcv",
  "modified": "2022-05-17T05:41:13Z",
  "published": "2022-05-17T05:41:13Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1905"
    },
    {
      "type": "WEB",
      "url": "https://support.proofpoint.com/article.cgi?article_id=338413"
    },
    {
      "type": "WEB",
      "url": "http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/790980"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2011-1905

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2011-1905

Aliases

CVE-2011-1905

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2011-1905",
    "description": "Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified administrative modules in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allow remote attackers to hijack the authentication of administrators via unknown vectors.",
    "id": "GSD-2011-1905"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2011-1905"
      ],
      "details": "Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified administrative modules in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allow remote attackers to hijack the authentication of administrators via unknown vectors.",
      "id": "GSD-2011-1905",
      "modified": "2023-12-13T01:19:08.148501Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2011-1905",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified administrative modules in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allow remote attackers to hijack the authentication of administrators via unknown vectors."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://support.proofpoint.com/article.cgi?article_id=338413",
            "refsource": "MISC",
            "url": "https://support.proofpoint.com/article.cgi?article_id=338413"
          },
          {
            "name": "VU#790980",
            "refsource": "CERT-VN",
            "url": "http://www.kb.cert.org/vuls/id/790980"
          },
          {
            "name": "http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php",
            "refsource": "MISC",
            "url": "http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:proofpoint:protection_server:5.5.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:proofpoint:protection_server:5.5.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:proofpoint:protection_server:5.5.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:proofpoint:protection_server:6.0.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:proofpoint:protection_server:6.2.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:proofpoint:protection_server:6.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:proofpoint:messaging_security_gateway:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "6.2.0.263\\:6.2.0.237",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2011-1905"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified administrative modules in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allow remote attackers to hijack the authentication of administrators via unknown vectors."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-352"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php",
              "refsource": "MISC",
              "tags": [],
              "url": "http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php"
            },
            {
              "name": "https://support.proofpoint.com/article.cgi?article_id=338413",
              "refsource": "MISC",
              "tags": [],
              "url": "https://support.proofpoint.com/article.cgi?article_id=338413"
            },
            {
              "name": "VU#790980",
              "refsource": "CERT-VN",
              "tags": [
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/790980"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": true
        }
      },
      "lastModifiedDate": "2011-05-31T04:00Z",
      "publishedDate": "2011-05-05T14:55Z"
    }
  }
}

VAR-201105-0116

Vulnerability from variot - Updated: 2025-04-11 23:02

Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified administrative modules in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allow remote attackers to hijack the authentication of administrators via unknown vectors. Proofpoint Protection Server Has multiple vulnerabilities. Proofpoint Protection Server Includes authentication bypass, command injection, SQL Multiple vulnerabilities exist, including injection and directory traversal. Clear Skies Security's advisory of TECHNICAL DETAILS Describes each vulnerability as follows: "Enduser Authentication Bypass User-level access to the Proofpoint mail filter web interface can be obtained as any available user without providing the user’s login credentials. Path Traversal Allows Access to System Files Arbitrary files on the Proofpoint appliance can be obtained by manipulating a flaw in the web interface. Proofpoint SQL Injection A publicly accessible function in the Proofpoint interface is vulnerable to SQL Injection. Proofpoint Command Injection A function in the Proofpoint web interface can be manipulated into executing any command on the server. Proofpoint Forced Browsing / Insufficient Page Authorization Some administrative modules are accessible without authenticating with the application."A remote attacker could execute arbitrary commands or download arbitrary files. An authentication-bypass vulnerability 2. A command-injection vulnerability 3. An SQL-injection vulnerability 4. A security-bypass vulnerability 5. A directory-traversal vulnerability Attackers may exploit these issues to retrieve arbitrary files from the affected application, compromise the application, obtain sensitive information, access or modify data, exploit latent vulnerabilities in the underlying database, and gain administrative access to the affected application. A remote attacker hijacks an administrator's authentication request with the help of an unknown vector. ----------------------------------------------------------------------

Secunia is hiring!

http://secunia.com/company/jobs/

TITLE: Proofpoint Enterprise Protection Multiple Vulnerabilities

SECUNIA ADVISORY ID: SA44457

VERIFY ADVISORY: Secunia.com http://secunia.com/advisories/44457/ Customer Area (Credentials Required) https://ca.secunia.com/?page=viewadvisory&vuln_id=44457

RELEASE DATE: 2011-05-04

DISCUSS ADVISORY: http://secunia.com/advisories/44457/#comments

AVAILABLE ON SITE AND IN CUSTOMER AREA: * Last Update * Popularity * Comments * Criticality Level * Impact * Where * Solution Status * Operating System / Software * CVE Reference(s)

http://secunia.com/advisories/44457/

ONLY AVAILABLE IN CUSTOMER AREA: * Authentication Level * Report Reliability * Secunia PoC * Secunia Analysis * Systems Affected * Approve Distribution * Remediation Status * Secunia CVSS Score * CVSS

https://ca.secunia.com/?page=viewadvisory&vuln_id=44457

ONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI: * AUTOMATED SCANNING

http://secunia.com/vulnerability_scanning/personal/ http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/

DESCRIPTION: Multiple vulnerabilities have been reported in Proofpoint Enterprise Protection, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks, bypass certain security restrictions, disclose sensitive information, and compromise a vulnerable system.

1) Input passed via the "displayprogress" parameter to enduser/process.cgi is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

Note: This vulnerability only affects version 5.5.5.

3) Certain unspecified input is not properly verified before being used to access files.

4) Certain unspecified input is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.

5) An error in the application allows access to certain administrative modules without checking for authentication.

6) Certain unspecified input is not properly sanitised before being used and can be exploited to inject and execute arbitrary commands.

SOLUTION: Apply patches.

Further details available in Customer Area: http://secunia.com/products/corporate/EVM/

PROVIDED AND/OR DISCOVERED BY: 1) Karan Khosla, Sense of Security Labs. 2 - 6) Scott Miles, Clear Skies Security via US-CERT.

ORIGINAL ADVISORY: Proofpoint: https://support.proofpoint.com/article.cgi?article_id=338413

Sense of Security Labs: http://www.senseofsecurity.com.au/advisories/SOS-11-005

US-CERT VU#790980: http://www.kb.cert.org/vuls/id/790980

Clear Skies Security: http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php

OTHER REFERENCES: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/

DEEP LINKS: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/

EXTENDED DESCRIPTION: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/

EXTENDED SOLUTION: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/

EXPLOIT: Further details available in Customer Area: http://secunia.com/products/corporate/EVM/

About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities.

Subscribe: http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/

Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.

Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201105-0116",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "protection server",
        "scope": "eq",
        "trust": 2.4,
        "vendor": "proofpoint",
        "version": "5.5.3"
      },
      {
        "model": "protection server",
        "scope": "eq",
        "trust": 2.4,
        "vendor": "proofpoint",
        "version": "5.5.4"
      },
      {
        "model": "protection server",
        "scope": "eq",
        "trust": 2.4,
        "vendor": "proofpoint",
        "version": "5.5.5"
      },
      {
        "model": "protection server",
        "scope": "eq",
        "trust": 2.4,
        "vendor": "proofpoint",
        "version": "6.0.2"
      },
      {
        "model": "protection server",
        "scope": "eq",
        "trust": 2.4,
        "vendor": "proofpoint",
        "version": "6.1.1"
      },
      {
        "model": "protection server",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "proofpoint",
        "version": "6.2.0"
      },
      {
        "model": "messaging security gateway",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "proofpoint",
        "version": "6.2.0.263\\:6.2.0.237"
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "proofpoint",
        "version": null
      },
      {
        "model": "messaging security gateway",
        "scope": "lte",
        "trust": 0.8,
        "vendor": "proofpoint",
        "version": "6.2.0.263:6.2.0.237"
      },
      {
        "model": "protection server",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "proofpoint",
        "version": "and  6.2.0"
      },
      {
        "model": "protection server",
        "scope": null,
        "trust": 0.8,
        "vendor": "proofpoint",
        "version": null
      },
      {
        "model": "messaging security gateway",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "proofpoint",
        "version": "6.2.0.263\\:6.2.0.237"
      },
      {
        "model": "inc proofpoint protection server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "proofpoint",
        "version": "6.2.0"
      },
      {
        "model": "inc proofpoint protection server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "proofpoint",
        "version": "6.1.1"
      },
      {
        "model": "inc proofpoint protection server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "proofpoint",
        "version": "6.0.2"
      },
      {
        "model": "inc proofpoint protection server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "proofpoint",
        "version": "5.5.5"
      },
      {
        "model": "inc proofpoint protection server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "proofpoint",
        "version": "5.5.4"
      },
      {
        "model": "inc proofpoint protection server",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "proofpoint",
        "version": "5.5.3"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#790980"
      },
      {
        "db": "BID",
        "id": "47675"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-004594"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001625"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201105-069"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-1905"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/a:proofpoint:messaging_security_gateway",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/a:proofpoint:protection_server",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-004594"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Scott Miles of Clear Skies Security.",
    "sources": [
      {
        "db": "BID",
        "id": "47675"
      }
    ],
    "trust": 0.3
  },
  "cve": "CVE-2011-1905",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 8.6,
            "id": "CVE-2011-1905",
            "impactScore": 6.4,
            "integrityImpact": "PARTIAL",
            "severity": "MEDIUM",
            "trust": 1.8,
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 8.6,
            "id": "VHN-49850",
            "impactScore": 6.4,
            "integrityImpact": "PARTIAL",
            "severity": "MEDIUM",
            "trust": 0.1,
            "vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2011-1905",
            "trust": 1.0,
            "value": "MEDIUM"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#790980",
            "trust": 0.8,
            "value": "22.50"
          },
          {
            "author": "NVD",
            "id": "CVE-2011-1905",
            "trust": 0.8,
            "value": "Medium"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201105-069",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "VULHUB",
            "id": "VHN-49850",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#790980"
      },
      {
        "db": "VULHUB",
        "id": "VHN-49850"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-004594"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201105-069"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-1905"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified administrative modules in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allow remote attackers to hijack the authentication of administrators via unknown vectors. Proofpoint Protection Server Has multiple vulnerabilities. Proofpoint Protection Server Includes authentication bypass, command injection, SQL Multiple vulnerabilities exist, including injection and directory traversal. Clear Skies Security\u0027s advisory of TECHNICAL DETAILS Describes each vulnerability as follows: \"Enduser Authentication Bypass User-level access to the Proofpoint mail filter web interface can be obtained as any available user without providing the user\u2019s login credentials. Path Traversal Allows Access to System Files Arbitrary files on the Proofpoint appliance can be obtained by manipulating a flaw in the web interface. Proofpoint SQL Injection A publicly accessible function in the Proofpoint interface is vulnerable to SQL Injection. Proofpoint Command Injection A function in the Proofpoint web interface can be manipulated into executing any command on the server. Proofpoint Forced Browsing / Insufficient Page Authorization Some administrative modules are accessible without authenticating with the application.\"A remote attacker could execute arbitrary commands or download arbitrary files. An authentication-bypass vulnerability\n2. A command-injection vulnerability\n3. An SQL-injection vulnerability\n4. A security-bypass vulnerability\n5.  A directory-traversal vulnerability\nAttackers may exploit these issues to retrieve arbitrary files from the  affected application, compromise the  application, obtain sensitive  information, access or modify data,  exploit latent vulnerabilities in  the underlying database, and gain  administrative access to the affected  application. A remote attacker hijacks an administrator\u0027s authentication request with the help of an unknown vector. ----------------------------------------------------------------------\n\n\nSecunia is hiring!\n\nhttp://secunia.com/company/jobs/\n\n\n----------------------------------------------------------------------\n\nTITLE:\nProofpoint Enterprise Protection Multiple Vulnerabilities\n\nSECUNIA ADVISORY ID:\nSA44457\n\nVERIFY ADVISORY:\nSecunia.com\nhttp://secunia.com/advisories/44457/\nCustomer Area (Credentials Required)\nhttps://ca.secunia.com/?page=viewadvisory\u0026vuln_id=44457\n\nRELEASE DATE:\n2011-05-04\n\nDISCUSS ADVISORY:\nhttp://secunia.com/advisories/44457/#comments\n\nAVAILABLE ON SITE AND IN CUSTOMER AREA:\n * Last Update\n * Popularity\n * Comments\n * Criticality Level\n * Impact\n * Where\n * Solution Status\n * Operating System / Software\n * CVE Reference(s)\n\nhttp://secunia.com/advisories/44457/\n\nONLY AVAILABLE IN CUSTOMER AREA:\n * Authentication Level\n * Report Reliability\n * Secunia PoC\n * Secunia Analysis\n * Systems Affected\n * Approve Distribution\n * Remediation Status\n * Secunia CVSS Score\n * CVSS\n\nhttps://ca.secunia.com/?page=viewadvisory\u0026vuln_id=44457\n\nONLY AVAILABLE WITH SECUNIA CSI AND SECUNIA PSI:\n * AUTOMATED SCANNING\n\nhttp://secunia.com/vulnerability_scanning/personal/\nhttp://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/\n\nDESCRIPTION:\nMultiple vulnerabilities have been reported in Proofpoint Enterprise\nProtection, which can be exploited by malicious people to conduct\ncross-site scripting and SQL injection attacks, bypass certain\nsecurity restrictions, disclose sensitive information, and compromise\na vulnerable system. \n\n1) Input passed via the \"displayprogress\" parameter to\nenduser/process.cgi is not properly sanitised before being returned\nto the user. This can be exploited to execute arbitrary HTML and\nscript code in a user\u0027s browser session in context of an affected\nsite. \n\nNote: This vulnerability only affects version 5.5.5. \n\n3) Certain unspecified input is not properly verified before being\nused to access files. \n\n4) Certain unspecified input is not properly sanitised before being\nused in SQL queries. This can be exploited to manipulate SQL queries\nby injecting arbitrary SQL code. \n\n5)  An error in the application allows access to certain\nadministrative modules without checking for authentication. \n\n6) Certain unspecified input is not properly sanitised before being\nused and can be exploited to inject and execute arbitrary commands. \n\nSOLUTION:\nApply patches. \n\nFurther details available in Customer Area:\nhttp://secunia.com/products/corporate/EVM/\n\nPROVIDED AND/OR DISCOVERED BY:\n1) Karan Khosla, Sense of Security Labs. \n2 - 6) Scott Miles, Clear Skies Security via US-CERT. \n\nORIGINAL ADVISORY:\nProofpoint:\nhttps://support.proofpoint.com/article.cgi?article_id=338413\n\nSense of Security Labs:\nhttp://www.senseofsecurity.com.au/advisories/SOS-11-005\n\nUS-CERT VU#790980:\nhttp://www.kb.cert.org/vuls/id/790980\n\nClear Skies Security:\nhttp://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php\n\nOTHER REFERENCES:\nFurther details available in Customer Area:\nhttp://secunia.com/products/corporate/EVM/\n\nDEEP LINKS:\nFurther details available in Customer Area:\nhttp://secunia.com/products/corporate/EVM/\n\nEXTENDED DESCRIPTION:\nFurther details available in Customer Area:\nhttp://secunia.com/products/corporate/EVM/\n\nEXTENDED SOLUTION:\nFurther details available in Customer Area:\nhttp://secunia.com/products/corporate/EVM/\n\nEXPLOIT:\nFurther details available in Customer Area:\nhttp://secunia.com/products/corporate/EVM/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\nprivate users keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/advisories/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/advisories/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2011-1905"
      },
      {
        "db": "CERT/CC",
        "id": "VU#790980"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-004594"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001625"
      },
      {
        "db": "BID",
        "id": "47675"
      },
      {
        "db": "VULHUB",
        "id": "VHN-49850"
      },
      {
        "db": "PACKETSTORM",
        "id": "101135"
      }
    ],
    "trust": 3.51
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#790980",
        "trust": 4.5
      },
      {
        "db": "NVD",
        "id": "CVE-2011-1905",
        "trust": 2.5
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-004594",
        "trust": 0.8
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001625",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201105-069",
        "trust": 0.7
      },
      {
        "db": "BID",
        "id": "47675",
        "trust": 0.3
      },
      {
        "db": "SECUNIA",
        "id": "44457",
        "trust": 0.2
      },
      {
        "db": "VULHUB",
        "id": "VHN-49850",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "101135",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#790980"
      },
      {
        "db": "VULHUB",
        "id": "VHN-49850"
      },
      {
        "db": "BID",
        "id": "47675"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-004594"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001625"
      },
      {
        "db": "PACKETSTORM",
        "id": "101135"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201105-069"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-1905"
      }
    ]
  },
  "id": "VAR-201105-0116",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-49850"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2025-04-11T23:02:07.264000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "Top Page",
        "trust": 0.8,
        "url": "http://www.proofpoint.com/"
      },
      {
        "title": "Top Page",
        "trust": 0.8,
        "url": "http://www.proofpoint.com"
      },
      {
        "title": "Call Tracking System - Login (Customer Support web site\uff09",
        "trust": 0.8,
        "url": "https://support.proofpoint.com/article.cgi?article_id=338413"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-004594"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001625"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-352",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-49850"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-004594"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-1905"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 3.7,
        "url": "http://www.kb.cert.org/vuls/id/790980"
      },
      {
        "trust": 2.6,
        "url": "http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php"
      },
      {
        "trust": 2.6,
        "url": "https://support.proofpoint.com/article.cgi?article_id=338413"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2011-1905"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2011-1905"
      },
      {
        "trust": 0.8,
        "url": "http://jvn.jp/cert/jvnvu790980"
      },
      {
        "trust": 0.3,
        "url": "http://www.proofpoint.com/products/index.php"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/44457/"
      },
      {
        "trust": 0.1,
        "url": "https://ca.secunia.com/?page=viewadvisory\u0026vuln_id=44457"
      },
      {
        "trust": 0.1,
        "url": "http://www.senseofsecurity.com.au/advisories/sos-11-005"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/products/corporate/evm/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/company/jobs/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/secunia_security_advisories/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/44457/#comments"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/vulnerability_scanning/personal/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/about_secunia_advisories/"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#790980"
      },
      {
        "db": "VULHUB",
        "id": "VHN-49850"
      },
      {
        "db": "BID",
        "id": "47675"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-004594"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001625"
      },
      {
        "db": "PACKETSTORM",
        "id": "101135"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201105-069"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-1905"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#790980"
      },
      {
        "db": "VULHUB",
        "id": "VHN-49850"
      },
      {
        "db": "BID",
        "id": "47675"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-004594"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2011-001625"
      },
      {
        "db": "PACKETSTORM",
        "id": "101135"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201105-069"
      },
      {
        "db": "NVD",
        "id": "CVE-2011-1905"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2011-05-02T00:00:00",
        "db": "CERT/CC",
        "id": "VU#790980"
      },
      {
        "date": "2011-05-05T00:00:00",
        "db": "VULHUB",
        "id": "VHN-49850"
      },
      {
        "date": "2011-05-02T00:00:00",
        "db": "BID",
        "id": "47675"
      },
      {
        "date": "2012-03-27T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2011-004594"
      },
      {
        "date": "2011-05-25T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2011-001625"
      },
      {
        "date": "2011-05-05T06:57:39",
        "db": "PACKETSTORM",
        "id": "101135"
      },
      {
        "date": "2011-05-06T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201105-069"
      },
      {
        "date": "2011-05-05T14:55:03.340000",
        "db": "NVD",
        "id": "CVE-2011-1905"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2011-05-02T00:00:00",
        "db": "CERT/CC",
        "id": "VU#790980"
      },
      {
        "date": "2011-05-31T00:00:00",
        "db": "VULHUB",
        "id": "VHN-49850"
      },
      {
        "date": "2011-05-02T00:00:00",
        "db": "BID",
        "id": "47675"
      },
      {
        "date": "2012-03-27T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2011-004594"
      },
      {
        "date": "2011-05-25T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2011-001625"
      },
      {
        "date": "2011-05-06T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201105-069"
      },
      {
        "date": "2025-04-11T00:51:21.963000",
        "db": "NVD",
        "id": "CVE-2011-1905"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201105-069"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Proofpoint Protection Server contains multiple vulnerabilities",
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#790980"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "cross-site request forgery",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201105-069"
      }
    ],
    "trust": 0.6
  }
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2011-1905 (GCVE-0-2011-1905)

FKIE_CVE-2011-1905

GHSA-XPQW-3MMQ-RPCV

GSD-2011-1905

VAR-201105-0116

Tags

Sightings

Nomenclature