Lucene search

K
nvd[email protected]NVD:CVE-2003-0636
HistoryAug 27, 2003 - 4:00 a.m.

CVE-2003-0636

2003-08-2704:00:00
web.nvd.nist.gov
6

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.5

Confidence

High

EPSS

0.002

Percentile

54.0%

Novell iChain 2.2 before Support Pack 1 does not properly verify that URL redirects match the DNS name of an accelerator, which allows attackers to redirect URLs to malicious web sites.

Affected configurations

Nvd
Node
novellichainMatch2.2
VendorProductVersionCPE
novellichain2.2cpe:2.3:a:novell:ichain:2.2:*:*:*:*:*:*:*

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.5

Confidence

High

EPSS

0.002

Percentile

54.0%

Related for NVD:CVE-2003-0636