7.5
CVE-2003-1286
- EPSS 11.1%
- Veröffentlicht 31.12.2003 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginHTTP Proxy in Sambar Server before 6.0 beta 6, when security.ini lacks a 127.0.0.1 proxydeny entry, allows remote attackers to send proxy HTTP requests to the Sambar Server's administrative interface and external web servers, by making a "Connection: keep-alive" request before the proxy requests.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Sambar ≫ Sambar Server Version5.0
Sambar ≫ Sambar Server Version5.0 Updatebeta1
Sambar ≫ Sambar Server Version5.0 Updatebeta2
Sambar ≫ Sambar Server Version5.0 Updatebeta3
Sambar ≫ Sambar Server Version5.0 Updatebeta4
Sambar ≫ Sambar Server Version5.0 Updatebeta5
Sambar ≫ Sambar Server Version5.0 Updatebeta6
Sambar ≫ Sambar Server Version5.1
Sambar ≫ Sambar Server Version5.1 Updatebeta1
Sambar ≫ Sambar Server Version5.1 Updatebeta2
Sambar ≫ Sambar Server Version5.1 Updatebeta3
Sambar ≫ Sambar Server Version5.1 Updatebeta4
Sambar ≫ Sambar Server Version5.1 Updatebeta5
Sambar ≫ Sambar Server Version5.2
Sambar ≫ Sambar Server Version5.3
Sambar ≫ Sambar Server Version6.0 Updatebeta1
Sambar ≫ Sambar Server Version6.0 Updatebeta2
Sambar ≫ Sambar Server Version6.0 Updatebeta3
Sambar ≫ Sambar Server Version6.0 Updatebeta4
Sambar ≫ Sambar Server Version6.0 Updatebeta5
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 11.1% | 0.932 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|