CVE: CVE-2003-1127 - CVE-Search

CVE Details for CVE: CVE-2003-1127

Summary

Whale Communications e-Gap 2.5 on Windows 2000 allows remote attackers to obtain the source code for the login page via the HTTP TRACE method, which bypasses the preprocessor.

Timestamps
Last major update	11-07-2017 - 01:29
Published	31-12-2003 - 05:00
Last modified	11-07-2017 - 01:29

References

http://www.procheckup.com/security_info/vuln_pr0307.html
http://www.kb.cert.org/vuls/id/371470
http://www.securityfocus.com/bid/9431
https://exchange.xforce.ibmcloud.com/vulnerabilities/14869

Vulnerable Configurations

cpe:2.3:a:whale_communications:e-gap:2.5:*:*:*:*:*:*:*
cpe:2.3:a:whale_communications:e-gap:2.5:*:*:*:*:*:*:*

CAPEC

Click the CAPEC title to display a description

CWE

NVD-CWE-Other

CVSS

Base

5.0

Impact

2.9

Exploitability

10.0

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

CVSS3

None

VIA4 references

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:N/A:N

refmap via4

bid	9431
cert-vn	VU#371470
misc	http://www.procheckup.com/security_info/vuln_pr0307.html
xf	egap-url-information-disclosure(14869)