What is the severity of CVE-2005-2229?

CVE-2005-2229 is considered a high severity vulnerability due to the improper access controls leading to exposure of sensitive information.

How do I fix CVE-2005-2229?

To fix CVE-2005-2229, ensure that sensitive files are not stored under the web document root and apply proper access controls to the data and torrents directories.

What software versions are affected by CVE-2005-2229?

CVE-2005-2229 affects Blog Torrent versions 0.92 and earlier.

Is there a patch available for CVE-2005-2229?

There is no specific patch for CVE-2005-2229; the recommended action is to modify file storage practices and implement access controls.

Vulnerability/
CVE-2005-2229

high

7.5

CWE

NVD-CWE-Other

12/7/2005

7/8/2024

CVE-2005-2229

Q: What type of information can be exposed due to CVE-2005-2229?

CVE-2005-2229 can expose sensitive information such as account names and password hashes to remote attackers.

First published: Tue Jul 12 2005(Updated: )

Blog Torrent 0.92 and earlier stores sensitive files under the web document root in the (1) data or (2) torrents directories with insufficient access control, which allows remote attackers to obtain sensitive information such as account names and password hashes, as demonstrated using data/newusers.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
TorrentFlux	<=0.92

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2005-2229?
CVE-2005-2229 is considered a high severity vulnerability due to the improper access controls leading to exposure of sensitive information.
How do I fix CVE-2005-2229?
To fix CVE-2005-2229, ensure that sensitive files are not stored under the web document root and apply proper access controls to the data and torrents directories.
What software versions are affected by CVE-2005-2229?
CVE-2005-2229 affects Blog Torrent versions 0.92 and earlier.
What type of information can be exposed due to CVE-2005-2229?
CVE-2005-2229 can expose sensitive information such as account names and password hashes to remote attackers.
Is there a patch available for CVE-2005-2229?
There is no specific patch for CVE-2005-2229; the recommended action is to modify file storage practices and implement access controls.

agent/type
agent/first-publish-date
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/references
agent/severity
agent/author
agent/weakness
agent/last-modified-date
agent/description
agent/event
agent/source
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/blog torrent
canonical/torrentflux
version/torrentflux/0.92

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Frequently Asked Questions

What is the severity of CVE-2005-2229?
CVE-2005-2229 is considered a high severity vulnerability due to the improper access controls leading to exposure of sensitive information.
How do I fix CVE-2005-2229?
To fix CVE-2005-2229, ensure that sensitive files are not stored under the web document root and apply proper access controls to the data and torrents directories.
What software versions are affected by CVE-2005-2229?
CVE-2005-2229 affects Blog Torrent versions 0.92 and earlier.
What type of information can be exposed due to CVE-2005-2229?
CVE-2005-2229 can expose sensitive information such as account names and password hashes to remote attackers.
Is there a patch available for CVE-2005-2229?
There is no specific patch for CVE-2005-2229; the recommended action is to modify file storage practices and implement access controls.