CVE-2002-1484P3CRITICALCVSS 9.8PoCv3.4·v3.62003-04-22
CVE-2002-1484 [CRITICAL] CWE-918 CVE-2002-1484: DB4Web server, when configured to use verbose debug messages, allows remote attackers to use DB4Web
DB4Web server, when configured to use verbose debug messages, allows remote attackers to use DB4Web as a proxy and attempt TCP connections to other systems (port scan) via a request for a URL that specifies the target IP address and port, which produces a connection status in the resulting error message.
nvd