Lucene search

[email protected]CVE-2004-0709

HistoryJul 27, 2004 - 4:00 a.m.

CVE-2004-0709

2004-07-2704:00:00

[email protected]

web.nvd.nist.gov

cve-2004-0709

nvd

hp openview

security

utf-8

access restriction

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.1 High

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.5%

JSON

HP OpenView Select Access 5.0 through 6.0 does not correctly decode UTF-8 encoded unicode characters in a URL, which could allow remote attackers to bypass access restrictions.

Affected configurations

NVD

Node

hpopenview_select_accessMatch5.0patch_4

hpopenview_select_accessMatch5.1patch_1

hpopenview_select_accessMatch5.2

hpopenview_select_accessMatch6.0

CPENameOperatorVersion
hp:openview_select_accesshp openview select accesseq5.0
hp:openview_select_accesshp openview select accesseq5.1
hp:openview_select_accesshp openview select accesseq5.2
hp:openview_select_accesshp openview select accesseq6.0

CPE	Name	Operator	Version
hp:openview_select_access	hp openview select access	eq	5.0
hp:openview_select_access	hp openview select access	eq	5.1
hp:openview_select_access	hp openview select access	eq	5.2
hp:openview_select_access	hp openview select access	eq	6.0

References

www.kb.cert.org/vuls/id/205766

www.securityfocus.com/advisories/6774

www.securityfocus.com/bid/10414

exchange.xforce.ibmcloud.com/vulnerabilities/16247

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.1 High

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.5%

JSON

Related for CVE-2004-0709

nvd1 cvelist1