← back
CVE-2005-3398

CVE-2005-3398

EPSS 13.1%
The default configuration of the web server for the Solaris Management Console (SMC) in Solaris 8, 9, and 10 enables the HTTP TRACE method, which could allow remote attackers to obtain sensitive information such as cookies and authentication data from HTTP headers.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/17334http://securitytracker.com/id?1015112https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1445http://sunsolve.sun.com/search/document.do?assetkey=1-26-102016-1http://www.securityfocus.com/bid/15222http://www.vupen.com/english/advisories/2005/2226