Lucene search

MitreCVE-2003-0636

HistoryAug 27, 2003 - 4:00 a.m.

CVE-2003-0636

2003-08-2704:00:00

mitre

web.nvd.nist.gov

cve-2003-0636

novell

ichain

url redirects

dns

security vulnerability

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

Low

EPSS

0.002

Percentile

54.0%

JSON

Novell iChain 2.2 before Support Pack 1 does not properly verify that URL redirects match the DNS name of an accelerator, which allows attackers to redirect URLs to malicious web sites.

Affected configurations

Nvd

Node

novellichainMatch2.2

VendorProductVersionCPE
novellichain2.2cpe:2.3:a:novell:ichain:2.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
novell	ichain	2.2	cpe:2.3:a:novell:ichain:2.2:::::::*

References

support.novell.com/cgi-bin/search/searchtid.cgi?/2966435.htm

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

Low

EPSS

0.002

Percentile

54.0%

JSON

Related for CVE-2003-0636