Lucene search

[email protected]NVD:CVE-2004-1513

HistoryDec 31, 2004 - 5:00 a.m.

CVE-2004-1513

2004-12-3105:00:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.6

Confidence

Low

EPSS

0.01

Percentile

84.0%

JSON

04WebServer 1.42 does not adequately filter data that is written to log files, which could allow remote attackers to inject carriage return characters into the log file and spoof log entries.

Affected configurations

Nvd

Node

soft330404webserverMatch1.42

VendorProductVersionCPE
soft330404webserver1.42cpe:2.3:a:soft3304:04webserver:1.42:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
soft3304	04webserver	1.42	cpe:2.3:a:soft3304:04webserver:1.42:::::::*

References

marc.info/?l=bugtraq&m=110012542615484&w=2

marc.info/?l=bugtraq&m=110054395311823&w=2

secunia.com/advisories/13159/

www.security.org.sg/vuln/04webserver142.html

www.securityfocus.com/bid/11652

www.soft3304.net/04WebServer/Security.html

exchange.xforce.ibmcloud.com/vulnerabilities/18034

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.6

Confidence

Low

EPSS

0.01

Percentile

84.0%

JSON

Related for NVD:CVE-2004-1513

cvelist1 cve1 nessus1