Unrated severityNVD Advisory· Published Dec 31, 2003· Updated Jun 16, 2026
CVE-2003-1286
CVE-2003-1286
Description
HTTP Proxy in Sambar Server before 6.0 beta 6, when security.ini lacks a 127.0.0.1 proxydeny entry, allows remote attackers to send proxy HTTP requests to the Sambar Server's administrative interface and external web servers, by making a "Connection: keep-alive" request before the proxy requests.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
21cpe:2.3:a:sambar:sambar_server:5.0:*:*:*:*:*:*:*+ 20 more
- cpe:2.3:a:sambar:sambar_server:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:5.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:5.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:5.0:beta3:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:5.0:beta4:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:5.0:beta5:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:5.0:beta6:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:5.1:*:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:5.1:beta1:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:5.1:beta2:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:5.1:beta3:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:5.1:beta4:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:5.1:beta5:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:5.2:*:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:5.3:*:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:6.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:6.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:6.0:beta3:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:6.0:beta4:*:*:*:*:*:*
- cpe:2.3:a:sambar:sambar_server:6.0:beta5:*:*:*:*:*:*
- (no CPE)range: <6.0 beta 6
Patches
Vulnerability mechanics
References
7- securitytracker.com/idnvdPatch
- www.securityfocus.com/bid/10256nvdExploitPatch
- archives.neohapsis.com/archives/bugtraq/2004-04/0353.htmlnvdVendor Advisory
- secunia.com/advisories/9578nvdVendor Advisory
- www.idefense.com/application/poi/displaynvdVendor Advisory
- www.sambar.com/security.htmnvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/16054nvd
News mentions
0No linked articles in our index yet.