5
CVE-2010-1638
- EPSS 1.27%
- Veröffentlicht 22.06.2010 17:30:01
- Zuletzt bearbeitet 16.06.2026 23:18:45
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
The IMP plugin in Horde allows remote attackers to bypass firewall restrictions and use Horde as a proxy to scan internal networks via a crafted request to an unspecified test script. NOTE: this is only a vulnerability when the administrator does not follow recommendations in the product's installation documentation.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.27% | 0.659 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://conference.hitb.org/hitbsecconf2010dxb/materials/D1%20-%20Laurent%20Oudot%20-%20Improving%20the%20Stealthiness%20of%20Web%20Hacking.pdf#page=74
http://www.openwall.com/lists/oss-security/2010/05/21/2
http://www.openwall.com/lists/oss-security/2010/05/25/2