Vulnerabilities > CVE-2003-1286 - Unspecified vulnerability in Sambar Server

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

sambar

exploit available

NVD

Published: 2003-12-31

Updated: 2024-11-20

Summary

HTTP Proxy in Sambar Server before 6.0 beta 6, when security.ini lacks a 127.0.0.1 proxydeny entry, allows remote attackers to send proxy HTTP requests to the Sambar Server's administrative interface and external web servers, by making a "Connection: keep-alive" request before the proxy requests.

Vulnerable Configurations

Part	Description	Count
Application	Sambar Sambar Sambar Server 6.0 Sambar Sambar Server 5.3 Sambar Sambar Server 5.0 Sambar Sambar Server 5.1 Sambar Sambar Server 5.2	20

Exploit-Db

description	Sambar 5.x Open Proxy and Authentication Bypass Vulnerability. CVE-2003-1286. Remote exploit for windows platform
id	EDB-ID:24076
last seen	2016-02-02
modified	2003-01-30
published	2003-01-30
reporter	David Endler
source	https://www.exploit-db.com/download/24076/
title	Sambar 5.x Open Proxy and Authentication Bypass Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References