Lucene search

[email protected]CVE-2003-0162

HistoryApr 02, 2003 - 5:00 a.m.

CVE-2003-0162

2003-04-0205:00:00

[email protected]

web.nvd.nist.gov

cve-2003-0162

ecartis 1.0.0

password reset

privileges

html page

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.5 Medium

AI Score

Confidence

Low

0.012 Low

EPSS

Percentile

85.4%

JSON

Ecartis 1.0.0 (formerly listar) before snapshot 20030227 allows remote attackers to reset passwords of other users and gain privileges by modifying hidden form fields in the HTML page.

Affected configurations

NVD

Node

ecartisecartisMatch1.0.0_snapshot_2002-10-13

CPENameOperatorVersion
ecartis:ecartisecartiseq1.0.0_snapshot_2002-10-13

CPE	Name	Operator	Version
ecartis:ecartis	ecartis	eq	1.0.0_snapshot_2002-10-13

References

marc.info/?l=bugtraq&m=104636153214262&w=2

marc.info/?l=bugtraq&m=104673407728323&w=2

www.debian.org/security/2003/dsa-271

www.securityfocus.com/bid/6971

exchange.xforce.ibmcloud.com/vulnerabilities/11431

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.5 Medium

AI Score

Confidence

Low

0.012 Low

EPSS

Percentile

85.4%

JSON

Related for CVE-2003-0162

debian2 osv1 cvelist1 openvas2 nvd1 nessus2