7.5
CVE-2003-1286
- EPSS 3.37%
- Veröffentlicht 31.12.2003 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:03:51
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginHTTP Proxy in Sambar Server before 6.0 beta 6, when security.ini lacks a 127.0.0.1 proxydeny entry, allows remote attackers to send proxy HTTP requests to the Sambar Server's administrative interface and external web servers, by making a "Connection: keep-alive" request before the proxy requests.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Sambar ≫ Sambar Server Version5.0
Sambar ≫ Sambar Server Version5.0 Updatebeta1
Sambar ≫ Sambar Server Version5.0 Updatebeta2
Sambar ≫ Sambar Server Version5.0 Updatebeta3
Sambar ≫ Sambar Server Version5.0 Updatebeta4
Sambar ≫ Sambar Server Version5.0 Updatebeta5
Sambar ≫ Sambar Server Version5.0 Updatebeta6
Sambar ≫ Sambar Server Version5.1
Sambar ≫ Sambar Server Version5.1 Updatebeta1
Sambar ≫ Sambar Server Version5.1 Updatebeta2
Sambar ≫ Sambar Server Version5.1 Updatebeta3
Sambar ≫ Sambar Server Version5.1 Updatebeta4
Sambar ≫ Sambar Server Version5.1 Updatebeta5
Sambar ≫ Sambar Server Version5.2
Sambar ≫ Sambar Server Version5.3
Sambar ≫ Sambar Server Version6.0 Updatebeta1
Sambar ≫ Sambar Server Version6.0 Updatebeta2
Sambar ≫ Sambar Server Version6.0 Updatebeta3
Sambar ≫ Sambar Server Version6.0 Updatebeta4
Sambar ≫ Sambar Server Version6.0 Updatebeta5
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.37% | 0.872 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://www.sambar.com/security.htm
http://secunia.com/advisories/9578
http://securitytracker.com/id?1007819
http://www.idefense.com/application/poi/display?id=103&type=vulnerabilities&flashstatus=true
http://archives.neohapsis.com/archives/bugtraq/2004-04/0353.html
http://www.securityfocus.com/bid/10256
https://exchange.xforce.ibmcloud.com/vulnerabilities/16054