Lucene search

[email protected]CVE-2002-0203

HistoryMay 16, 2002 - 4:00 a.m.

CVE-2002-0203

2002-05-1604:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2002-0203

tarantella enterprise 3.20

linux

sparc solaris

remote attack

directory view

6.9 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

61.2%

JSON

ttawebtop.cgi in Tarantella Enterprise 3.20 on SPARC Solaris and Linux, and 3.1x and 3.0x including 3.11.903, allows remote attackers to view directory contents via an empty pg parameter.

CPENameOperatorVersion
tarantella:tarantella_enterprisetarantella tarantella enterpriseeq3.0
tarantella:tarantella_enterprisetarantella tarantella enterpriseeq3.20
tarantella:tarantella_enterprisetarantella tarantella enterpriseeq3.10

CPE	Name	Operator	Version
tarantella:tarantella_enterprise	tarantella tarantella enterprise	eq	3.0
tarantella:tarantella_enterprise	tarantella tarantella enterprise	eq	3.20
tarantella:tarantella_enterprise	tarantella tarantella enterprise	eq	3.10

References

marc.info/?l=bugtraq&m=101190195430376&w=2

www.tarantella.com/security/bulletin-03.html

6.9 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

61.2%

JSON

Related for CVE-2002-0203

openvas1 nessus1