Vulnerability Description
Whale Communications e-Gap 2.5 on Windows 2000 allows remote attackers to obtain the source code for the login page via the HTTP TRACE method, which bypasses the preprocessor.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Whale Communications | E-Gap | 2.5 |
References
- http://www.kb.cert.org/vuls/id/371470Third Party AdvisoryUS Government Resource
- http://www.procheckup.com/security_info/vuln_pr0307.html
- http://www.securityfocus.com/bid/9431Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14869
- http://www.kb.cert.org/vuls/id/371470Third Party AdvisoryUS Government Resource
- http://www.procheckup.com/security_info/vuln_pr0307.html
- http://www.securityfocus.com/bid/9431Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14869
FAQ
What is CVE-2003-1127?
CVE-2003-1127 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Whale Communications e-Gap 2.5 on Windows 2000 allows remote attackers to obtain the source code for the login page via the HTTP TRACE method, which bypasses the preprocessor.
How severe is CVE-2003-1127?
CVE-2003-1127 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-1127?
Check the references section above for vendor advisories and patch information. Affected products include: Whale Communications E-Gap.