CVE-2002-1888

Sažetak

CommonName Toolbar 3.5.2.0 sends unqualified domain name requests to the CommonName organization and possibly other web servers for name resolution, which allows those organizations to obtain internal server names.

Reference

http://archives.neohapsis.com/archives/bugtraq/2002-10/0043.html
http://www.iss.net/security_center/static/10293.php
http://www.securityfocus.com/bid/5878

CVSS

Base:	2.1
Impact:	2.9
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

05-09-2008 - 20:31

Objavljeno

31-12-2002 - 05:00