Lucene search

[email protected]CVE-2002-0142

HistoryMar 25, 2002 - 5:00 a.m.

CVE-2002-0142

2002-03-2505:00:00

[email protected]

web.nvd.nist.gov

cve-2002-0142

pi3web

cgi handler

dos

windows

beta

remote attack

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.4 Medium

AI Score

Confidence

High

0.063 Low

EPSS

Percentile

93.7%

JSON

CGI handler in John Roy Pi3Web for Windows 2.0 beta 1 and 2 allows remote attackers to cause a denial of service (crash) via a series of requests whose physical path is exactly 260 characters long and ends in a series of . (dot) characters.

Affected configurations

NVD

Node

pi3pi3webMatch2.0

CPENameOperatorVersion
pi3:pi3webpi3 pi3webeq2.0

CPE	Name	Operator	Version
pi3:pi3web	pi3 pi3web	eq	2.0

References

marc.info/?l=bugtraq&m=101164598828093&w=2

marc.info/?l=ntbugtraq&m=101102275316307&w=2

online.securityfocus.com/archive/1/250126

sourceforge.net/tracker/index.php?func=detail&aid=505583&group_id=17753&atid=317753

www.iss.net/security_center/static/7880.php

www.securityfocus.com/bid/3866

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.4 Medium

AI Score

Confidence

High

0.063 Low

EPSS

Percentile

93.7%

JSON

Related for CVE-2002-0142

nvd1 nessus1 cvelist1