CVE-2005-4261

critical

Description

Unspecified vulnerability in Positive Software Corporation CP+ (cpplus) before 2.5.5 allows attackers to have unknown impact and attack vectors, related to "a possible security flaw caused by a bug in Perl." NOTE: unless CP+ includes its own copy of Perl with CVE-2005-3962, this is a different vulnerability than CVE-2005-3962; however, there is insufficient information to be sure.

References

http://www.vupen.com/english/advisories/2005/2828

http://www.trustix.org/errata/2005/0068/

http://www.securityfocus.com/bid/15799

http://secunia.com/advisories/18005

http://secunia.com/advisories/17975

http://cpplus.info/feature_25.html

Details

Source: Mitre, NVD

Published: 2005-12-15

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Severity: High

CVSS v3

Base Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Severity: Critical

EPSS

EPSS: 0.00715