CVE-2003-1415

Current Description

NetCharts XBRL Server 4.0.0 allows remote attackers to obtain sensitive information via an HTTP request with an invalid chunked transfer encoding specification.

Basic Data

PublishedDecember 31, 2003
Last ModifiedJuly 29, 2017
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeCWE-119
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityMEDIUM
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactPARTIAL
CVSS 2 - Availability ImpactPARTIAL
CVSS 2 - Base Score6.8
SeverityMEDIUM
Exploitability Score8.6
Impact Score6.4
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationVisual MiningNetcharts Xbrl Server4.0.0*******

Vulnerable Software List

VendorProductVersions
Visual Mining Netcharts Xbrl Server 4.0.0

References

NameSourceURLTags
8091http://secunia.com/advisories/8091SECUNIAVendor Advisory
3261http://securityreason.com/securityalert/3261SREASON
20030218 [SecurityOffice] Netcharts XBRL Server v4.0.0 Information Leakage Vulnerabilityhttp://www.securityfocus.com/archive/1/312187BUGTRAQ
6877http://www.securityfocus.com/bid/6877BID
netcharts-chunked-encoding-bo(11345)https://exchange.xforce.ibmcloud.com/vulnerabilities/11345XF