Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2004-1513 | First vendor Publication | 2004-12-31 |
Vendor | Cve | Last vendor Modification | 2024-11-20 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:N/I:P/A:N) | |||
---|---|---|---|
Cvss Base Score | 5 | Attack Range | Network |
Cvss Impact Score | 2.9 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
04WebServer 1.42 does not adequately filter data that is written to log files, which could allow remote attackers to inject carriage return characters into the log file and spoof log entries. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1513 |
CAPEC : Common Attack Pattern Enumeration & Classification
Id | Name |
---|---|
CAPEC-15 | Command Delimiters |
CAPEC-34 | HTTP Response Splitting |
CAPEC-81 | Web Logs Tampering |
CWE : Common Weakness Enumeration
% | Id | Name |
---|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 1 |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
11607 | 04WebServer Log File Arbitrary Content Injection 04WebServer contains a flaw that may allow a malicious user to inject arbitrary characters into the log file. The issue is triggered when an attacker submits a specially crafted URL. It is possible that the flaw may allow the injection of false entries into the log file resulting in a loss of integrity. |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2004-11-13 | Name : The remote web server is susceptible to several forms of attack. File : 04webserver.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2024-11-28 23:22:39 |
|
2024-11-28 12:06:22 |
|
2021-05-04 12:02:32 |
|
2021-04-22 01:02:43 |
|
2020-05-23 00:16:02 |
|
2017-07-11 12:01:37 |
|
2016-10-18 12:01:26 |
|
2016-04-26 12:59:42 |
|
2014-02-17 10:28:54 |
|
2013-05-11 11:45:16 |
|