Vulnerability Description
Novell iChain 2.3 includes the build number in the VIA line of the proxy server's HTTP headers, which allows remote attackers to obtain sensitive information.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Novell | Ichain | 2.3 |
References
- http://secunia.com/advisories/12366PatchVendor Advisory
- http://securitytracker.com/id?1011074Patch
- http://support.novell.com/cgi-bin/search/searchtid.cgi?2972080.htm
- http://www.osvdb.org/9269Patch
- http://www.securityfocus.com/bid/11061Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17135
- http://secunia.com/advisories/12366PatchVendor Advisory
- http://securitytracker.com/id?1011074Patch
- http://support.novell.com/cgi-bin/search/searchtid.cgi?2972080.htm
- http://www.osvdb.org/9269Patch
- http://www.securityfocus.com/bid/11061Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17135
FAQ
What is CVE-2004-2582?
CVE-2004-2582 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Novell iChain 2.3 includes the build number in the VIA line of the proxy server's HTTP headers, which allows remote attackers to obtain sensitive information.
How severe is CVE-2004-2582?
CVE-2004-2582 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-2582?
Check the references section above for vendor advisories and patch information. Affected products include: Novell Ichain.