Lucene search

[email protected]CVE-2000-0642

HistoryJul 12, 2000 - 4:00 a.m.

CVE-2000-0642

2000-07-1204:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

webactive http server

cve-2000-0642

remote attack

access logs

nvd

6.9 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.005 Low

EPSS

Percentile

76.1%

JSON

The default configuration of WebActive HTTP Server 1.00 stores the web access log active.log in the document root, which allows remote attackers to view the logs by directly requesting the page.

CPENameOperatorVersion
itafrica:webactiveitafrica webactiveeq1.0

CPE	Name	Operator	Version
itafrica:webactive	itafrica webactive	eq	1.0

References

www.securityfocus.com/bid/1497

www.securityfocus.com/templates/archive.pike?list=1&msg=200007130827.BAA32671%40Rage.Resentment.org

exchange.xforce.ibmcloud.com/vulnerabilities/5184

6.9 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.005 Low

EPSS

Percentile

76.1%

JSON

Related for CVE-2000-0642

nessus1