CVE-2003-0636

HIGH

7.5

CVSS Severity Score

EPSS Score0.0220%

EPSS Percentile11.21th

Published2003年8月27日

Last Modified2026年4月16日

Vulnerability Description

Novell iChain 2.2 before Support Pack 1 does not properly verify that URL redirects match the DNS name of an accelerator, which allows attackers to redirect URLs to malicious web sites.

Affected Platforms (CPE)

📦

Novell

Ichain

= 2.2

References & Advisories

🔗 http://support.novell.com/cgi-bin/search/searchtid.cgi?/2966435.htm

関連する脆弱性情報

CVE-2005-074410.0

The web GUI for Novell iChain 2.2 and 2.3 SP2 and SP3 allows attackers to hijack sessions and gain administrator privileges by (1)...

CVE-2004-23147.5

The Telnet listener for Novell iChain Server before 2.2 Field Patch 3b 2.2.116 does not have a password by default, which allows r...

CVE-2003-06387.5

Multiple buffer overflows in Novell iChain 2.1 before Field Patch 3, and iChain 2.2 before Field Patch 1a, allow attackers to caus...

CVE-2019-59237.5

Directory traversal vulnerability in iChain Insurance Wallet App for iOS Version 1.3.0 and earlier allows remote attackers to read...