Vulnerability Name:


Summary:In some NT web servers, appending a space at the end of a URL may allow attackers to read source code for active pages.
CVSS v3 Severity:10.0 Critical (CCN CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
References:Source: XF

Vulnerable Configuration:
Configuration CCN 1:
  • cpe:/a:netscape:enterprise_server:2.0:*:*:*:*:*:*:*
  • AND
  • cpe:/a:bmc:patrol_agent:3.9.00:*:*:*:*:aix:*:*
  • OR cpe:/a:hp:hp-ux_containers:a.03.00:*:*:*:*:*:*:*
  • OR cpe:/o:sgi:irix:4.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:accelatech:bizsearch:3.2:-:*:*:*:linux_kernel:*:*
  • OR cpe:/a:quest:intrust_knowledge_pack_for_sun_solaris:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:os2:-:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_95:-:gold:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:windows_98_plus_pack:-:*:*:*:*:*:*:*
  • OR cpe:/o:novell:netware:5.1:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2000:-:sp4:*:*:*:*:*:*
  • OR cpe:/a:cisco:ios:15.2(2)eb1:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:windows_media_encoder:9_series:*:*:*:*:*:*:*
  • OR cpe:/o:compaq:tru64:4.0b:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:xp:sp2:x64:*:*:*:*:*
  • OR cpe:/a:apple:mac_os_runtime_for_java:2.1:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:2003_server:sp2:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    netscape enterprise server 2.0
    bmc patrol agent 3.9.00
    hp hp-ux containers a.03.00
    sgi irix 4.0.1
    accelatech bizsearch 3.2 -
    quest intrust knowledge pack for sun solaris
    ibm os2 -
    microsoft windows-9x 95 gold
    microsoft windows nt 4.0
    microsoft windows 98 plus pack -
    novell netware 5.1
    microsoft windows 2000 sp4
    cisco ios 15.2(2)eb1
    microsoft windows media encoder 9_series
    compaq tru64 4.0b
    microsoft windows xp sp2
    apple mac os runtime for java 2.1
    microsoft windows 2003_server sp2