Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/21 11:9 p.m.13 views

CVE-2004-2763

The default configuration of Sun ONE/iPlanet Web Server 4.1 SP1 through SP12 and 6.0 SP1 through SP5 responds to the HTTP TRACE request, which can allow remote attackers to steal information using cross-site tracing XST attacks in applications that are vulnerable to cross-site scripting...

5.8CVSS6.2AI score0.02178EPSS
Exploits1References1
NVD
NVD
added 2010/01/25 7:30 p.m.43 views

CVE-2010-0386

The default configuration of Sun Java System Application Server 7 and 7 2004Q2 enables the HTTP TRACE method, which makes it easier for remote attackers to steal cookies and authentication credentials via a cross-site tracing XST attack, a related issue to CVE-2004-2763 and CVE-2005-3398...

8.1CVSS6.5AI score0.01692EPSS
Exploits0References1
Prion
Prion
added 2010/01/25 7:30 p.m.27 views

Design/Logic Flaw

The default configuration of Sun Java System Application Server 7 and 7 2004Q2 enables the HTTP TRACE method, which makes it easier for remote attackers to steal cookies and authentication credentials via a cross-site tracing XST attack, a related issue to CVE-2004-2763 and CVE-2005-3398...

4.3CVSS6.8AI score0.13108EPSS
Exploits3References1Affected Software1
Prion
Prion
added 2010/01/25 7:30 p.m.26 views

Design/Logic Flaw

The default configuration of the web server in IBM Lotus Domino Server, possibly 6.0 through 8.0, enables the HTTP TRACE method, which makes it easier for remote attackers to steal cookies and authentication credentials via a cross-site tracing XST attack, a related issue to CVE-2004-2763 and...

4.3CVSS6.7AI score0.13108EPSS
Exploits3References4Affected Software1
NVD
NVD
added 2010/01/25 7:30 p.m.25 views

CVE-2008-7253

The default configuration of the web server in IBM Lotus Domino Server, possibly 6.0 through 8.0, enables the HTTP TRACE method, which makes it easier for remote attackers to steal cookies and authentication credentials via a cross-site tracing XST attack, a related issue to CVE-2004-2763 and...

4.3CVSS6.5AI score0.02093EPSS
Exploits0References4
Cvelist
Cvelist
added 2010/01/25 7:0 p.m.96 views

CVE-2008-7253

The default configuration of the web server in IBM Lotus Domino Server, possibly 6.0 through 8.0, enables the HTTP TRACE method, which makes it easier for remote attackers to steal cookies and authentication credentials via a cross-site tracing XST attack, a related issue to CVE-2004-2763 and...

6.4AI score0.02093EPSS
Exploits0References4
NVD
NVD
added 2009/06/01 10:30 p.m.30 views

CVE-2004-2763

The default configuration of Sun ONE/iPlanet Web Server 4.1 SP1 through SP12 and 6.0 SP1 through SP5 responds to the HTTP TRACE request, which can allow remote attackers to steal information using cross-site tracing XST attacks in applications that are vulnerable to cross-site scripting...

5.8CVSS5.9AI score0.02178EPSS
Exploits1References3
Cvelist
Cvelist
added 2009/06/01 10:0 p.m.89 views

CVE-2004-2763

The default configuration of Sun ONE/iPlanet Web Server 4.1 SP1 through SP12 and 6.0 SP1 through SP5 responds to the HTTP TRACE request, which can allow remote attackers to steal information using cross-site tracing XST attacks in applications that are vulnerable to cross-site scripting...

5.9AI score0.02178EPSS
Exploits1References3
Rows per page
Query Builder