Vulnerability Description
MyProxy 6.58 allows remote authenticated users in the Users Tab to connect to arbitrary hosts from the MyProxy server, possibly bypassing access restrictions, by connecting to the proxy and issuing a CONNECT command.
CVSS Score
4.6
MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Myproxy | Myproxy | 6.58 |
References
- http://securitytracker.com/alerts/2004/Nov/1012322.htmlExploitVendor Advisory
- http://www.osvdb.org/12138Exploit
- http://www.securitylab.ru/vulnerability/source/210758.phpExploitVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18265
- http://securitytracker.com/alerts/2004/Nov/1012322.htmlExploitVendor Advisory
- http://www.osvdb.org/12138Exploit
- http://www.securitylab.ru/vulnerability/source/210758.phpExploitVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18265
FAQ
What is CVE-2004-2481?
CVE-2004-2481 is a vulnerability with a CVSS score of 4.6 (MEDIUM). MyProxy 6.58 allows remote authenticated users in the Users Tab to connect to arbitrary hosts from the MyProxy server, possibly bypassing access restrictions, by connecting to the proxy and issuing a ...
How severe is CVE-2004-2481?
CVE-2004-2481 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-2481?
Check the references section above for vendor advisories and patch information. Affected products include: Myproxy Myproxy.