7.5
CVE-2004-1811
- EPSS 2.35%
- Veröffentlicht 31.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:08:26
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The SSL HTTP Server in HP Web-enabled Management Software 5.0 through 5.92, with anonymous access enabled, allows remote attackers to compromise the trusted certificates by uploading their own certificates.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Hp ≫ Ssl Http Server Version5.0
Hp ≫ Ssl Http Server Version5.92
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.35% | 0.815 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0057.html
http://marc.info/?l=bugtraq&m=107936784030214&w=2
http://secunia.com/advisories/11126
http://www.ciac.org/ciac/bulletins/o-100.shtml
http://www.immunitysec.com/downloads/hp_http.sxw.pdf
http://www.securityfocus.com/advisories/6448
http://www.securityfocus.com/bid/9859
http://www.tru64.org/stories.php?story=04/03/12/0204078
https://exchange.xforce.ibmcloud.com/vulnerabilities/15466