5.4

CVE-2009-0803

EPSS 1.22%
Veröffentlicht 04.03.2009 16:30:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

SmoothWall SmoothGuardian, as used in SmoothWall Firewall, NetworkGuardian, and SchoolGuardian 2008, when transparent interception mode is enabled, uses the HTTP Host header to determine the remote endpoint, which allows remote attackers to bypass access controls for Flash, Java, Silverlight, and probably other technologies, and possibly communicate with restricted intranet sites, via a crafted web page that causes a client to send HTTP requests with a modified Host header.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Smoothwall ≫ Networkguardian Version2008

Smoothwall ≫ Schoolguardian Version2008

Smoothwall ≫ Smoothguardian Version2008

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.22%	0.784

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.4	4.9	6.9	AV:N/AC:H/Au:N/C:C/I:N/A:N

http://www.kb.cert.org/vuls/id/435052

US Government Resource

http://www.securityfocus.com/bid/33858

Vendor Advisory

http://www.kb.cert.org/vuls/id/MAPG-7M6SM7

US Government Resource

https://nvd.nist.gov/vuln/detail/CVE-2009-0803

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2009-0803

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2009-0803

EUVD