ID |
CVE-2003-0105
|
Summary |
ServerMask 2.2 and earlier does not obfuscate (1) ETag, (2) HTTP Status Message, or (3) Allow HTTP responses, which could tell remote attackers that the web server is an IIS server. |
References |
|
Vulnerable Configurations |
|
CVSS |
Base: | 5.0 (as of 11-07-2017 - 01:29) |
Impact: | |
Exploitability: | |
|
CWE |
NVD-CWE-Other |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
NETWORK |
LOW |
NONE |
|
Impact |
Confidentiality | Integrity | Availability |
PARTIAL |
NONE |
NONE |
|
cvss-vector
via4
|
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
refmap
via4
|
|
Last major update |
11-07-2017 - 01:29 |
Published |
28-09-2004 - 04:00 |
Last modified |
11-07-2017 - 01:29 |