Vulnerability Details CVE-2003-1284
Sambar Server before 6.0 beta 6 allows remote attackers to obtain sensitive information via direct requests to the default scripts (1) environ.pl and (2) testcgi.exe.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.0%
CVSS Severity
CVSS v2 Score 5.0
References
- http://secunia.com/advisories/9578
- http://securitytracker.com/id?1007819
- http://www.idefense.com/application/poi/display?id=103&type=vulnerabilities&flashstatus=true
- http://www.sambar.com/security.htm
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13305
- http://secunia.com/advisories/9578
- http://securitytracker.com/id?1007819
- http://www.idefense.com/application/poi/display?id=103&type=vulnerabilities&flashstatus=true
- http://www.sambar.com/security.htm
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13305
Products affected by CVE-2003-1284
-
cpe:2.3:a:sambar:sambar_server:5.0
-
cpe:2.3:a:sambar:sambar_server:5.1
-
cpe:2.3:a:sambar:sambar_server:5.2
-
cpe:2.3:a:sambar:sambar_server:5.3
-
cpe:2.3:a:sambar:sambar_server:6.0