Vulnerability Description
NetOp Host before 7.65 build 2004278 allows remote attackers to obtain sensitive hostname, username and local IP address information via (1) a NetOp HELO request, or (2) when responses are disabled, a "custom" HELO request.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Danware Data | Netop | 6.0 |
References
- http://msgs.securepoint.com/cgi-bin/get/bugtraq0411/213.html
- http://www.corsaire.com/advisories/c040619-001.txtVendor Advisory
- http://www.securityfocus.com/bid/11710PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18171
- http://msgs.securepoint.com/cgi-bin/get/bugtraq0411/213.html
- http://www.corsaire.com/advisories/c040619-001.txtVendor Advisory
- http://www.securityfocus.com/bid/11710PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18171
FAQ
What is CVE-2004-0950?
CVE-2004-0950 is a vulnerability with a CVSS score of 5.0 (MEDIUM). NetOp Host before 7.65 build 2004278 allows remote attackers to obtain sensitive hostname, username and local IP address information via (1) a NetOp HELO request, or (2) when responses are disabled, a...
How severe is CVE-2004-0950?
CVE-2004-0950 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-0950?
Check the references section above for vendor advisories and patch information. Affected products include: Danware Data Netop.