Lucene search

MitreCVE-2004-2481

HistoryAug 21, 2005 - 4:00 a.m.

CVE-2004-2481

2005-08-2104:00:00

mitre

web.nvd.nist.gov

myproxy

cve-2004-2481

access restrictions

remote authentication

nvd

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

Low

EPSS

0.006

Percentile

79.4%

JSON

MyProxy 6.58 allows remote authenticated users in the Users Tab to connect to arbitrary hosts from the MyProxy server, possibly bypassing access restrictions, by connecting to the proxy and issuing a CONNECT command.

Affected configurations

Nvd

Node

myproxymyproxyMatch6.58

VendorProductVersionCPE
myproxymyproxy6.58cpe:2.3:a:myproxy:myproxy:6.58:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
myproxy	myproxy	6.58	cpe:2.3:a:myproxy:myproxy:6.58:::::::*

References

securitytracker.com/alerts/2004/Nov/1012322.html

www.osvdb.org/12138

www.securitylab.ru/vulnerability/source/210758.php

exchange.xforce.ibmcloud.com/vulnerabilities/18265

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

Low

EPSS

0.006

Percentile

79.4%

JSON

Related for CVE-2004-2481