Lucene search

[email protected]CVE-2003-0636

HistoryAug 27, 2003 - 4:00 a.m.

CVE-2003-0636

2003-08-2704:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2003-0636

novell

ichain

url redirects

dns

security vulnerability

7.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

53.3%

JSON

Novell iChain 2.2 before Support Pack 1 does not properly verify that URL redirects match the DNS name of an accelerator, which allows attackers to redirect URLs to malicious web sites.

CPENameOperatorVersion
novell:ichainnovell ichaineq2.2

CPE	Name	Operator	Version
novell:ichain	novell ichain	eq	2.2

References

support.novell.com/cgi-bin/search/searchtid.cgi?/2966435.htm

7.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

53.3%

JSON