CVE: CVE-2004-1103 - CVE-Search

CVE Details for CVE: CVE-2004-1103

Summary

MailPost 5.1.1sv, and possibly earlier versions, when debug mode is enabled, allows remote attackers to gain sensitive information via the debug parameter, which reveals information such as the path to the web root and the web server version.

Timestamps
Last major update	11-07-2017 - 01:30
Published	10-01-2005 - 05:00
Last modified	11-07-2017 - 01:30

References

http://www.securityfocus.com/bid/11595
http://www.kb.cert.org/vuls/id/858726
http://www.procheckup.com/security_info/vuln_pr0409.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/17952

Vulnerable Configurations

cpe:2.3:a:tips:mailpost:5.1.1_sv:*:*:*:*:*:*:*
cpe:2.3:a:tips:mailpost:5.1.1_sv:*:*:*:*:*:*:*

CAPEC

Click the CAPEC title to display a description

CWE

NVD-CWE-Other

CVSS

Base

5.0

Impact

2.9

Exploitability

10.0

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

CVSS3

None

VIA4 references

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:N/A:N

refmap via4

bid	11595
cert-vn	VU#858726
misc	http://www.procheckup.com/security_info/vuln_pr0409.html
xf	mailpost-information-disclosure(17952)