CVE-2005-2076
First published: Wed Jun 29 2005(Updated: )
HP Version Control Repository Manager (VCRM) before 2.1.1.730 does not properly handle the "@" character in a proxy password, which could allow attackers with physical access to obtain portions of the password when it is displayed to the screen.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| HPE Control Repository Manager | =2.1.1.710 | |
| HPE Control Repository Manager | =1.0.1288.1 | |
| HPE Control Repository Manager | =2.0.0.50 | |
| HPE Control Repository Manager | =1.0.2241.0 | |
| HPE Control Repository Manager | =1.0.3085.0 | |
| HPE Control Repository Manager | =1.0.2289.0 | |
| HPE Control Repository Manager | =1.0.2345.0 | |
| HPE Control Repository Manager | =2.1.1.720 | |
| HPE Control Repository Manager | =1.0.3086.0 | |
| HPE Control Repository Manager | =2.0.1.30 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2005-2076?
CVE-2005-2076 is considered a medium severity vulnerability due to its potential to expose portions of a proxy password.
How do I fix CVE-2005-2076?
To mitigate CVE-2005-2076, update HP Version Control Repository Manager to version 2.1.1.730 or later.
What does CVE-2005-2076 affect?
CVE-2005-2076 affects multiple versions of HP Version Control Repository Manager before 2.1.1.730.
What is the vulnerability in CVE-2005-2076?
The vulnerability in CVE-2005-2076 arises from improper handling of the '@' character in proxy passwords.
Who can exploit CVE-2005-2076?
CVE-2005-2076 can be exploited by attackers with physical access to the affected systems.
- agent/references
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/remedy
- agent/author
- agent/severity
- agent/last-modified-date
- agent/event
- agent/description
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/hp
- canonical/hp version control repository manager
- version/hp version control repository manager/2.1.1.710
- version/hp version control repository manager/1.0.1288.1
- version/hp version control repository manager/2.0.0.50
- version/hp version control repository manager/1.0.2241.0
- version/hp version control repository manager/1.0.3085.0
- version/hp version control repository manager/1.0.2289.0
- version/hp version control repository manager/1.0.2345.0
- version/hp version control repository manager/2.1.1.720
- version/hp version control repository manager/1.0.3086.0
- version/hp version control repository manager/2.0.1.30