CVE-2004-0950

NetOp Host before 7.65 build 2004278 allows remote attackers to obtain sensitive hostname, username and local IP address information via (1) a NetOp HELO request, or (2) when responses are disabled, a "custom" HELO request.

Published: Feb 9, 2005
Updated: Apr 13, 2023
CVE: CVE-2004-0950
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
danware_data / netop	7.0.1_build2002-01-29	7.0.1_build2002-01-29.x
danware_data / netop	6.50	6.50.x
danware_data / netop	7.50_build2003-08-04	7.50_build2003-08-04.x
danware_data / netop	6.0	6.0.x
danware_data / netop	7.60_build2003-06-24	7.60_build2003-06-24.x

http://msgs.securepoint.com/cgi-bin/get/bugtraq0411/213.html
http://www.corsaire.com/advisories/c040619-001.txt
http://www.securityfocus.com/bid/11710
https://exchange.xforce.ibmcloud.com/vulnerabilities/18171

Vulnerability Database

289,871

CVE-2004-0950