Lucene search

[email protected]CVE-2002-0508

HistoryAug 12, 2002 - 4:00 a.m.

CVE-2002-0508

2002-08-1204:00:00

[email protected]

web.nvd.nist.gov

cve-2002-0508

wwwisis 3.45

remote attack

command execution

file access

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

83.2%

JSON

wwwisis 3.45 and earlier allows remote attackers to execute arbitrary commands and read files via the parameters (1) prolog or (2) epilog.

Affected configurations

NVD

Node

wwwisiswwwisisMatch3.3

wwwisiswwwisisMatch3.45

CPENameOperatorVersion
wwwisis:wwwisiswwwisiseq3.3
wwwisis:wwwisiswwwisiseq3.45

CPE	Name	Operator	Version
wwwisis:wwwisis	wwwisis	eq	3.3
wwwisis:wwwisis	wwwisis	eq	3.45

References

archives.neohapsis.com/archives/vulnwatch/2002-q1/0077.html

online.securityfocus.com/archive/1/264682

online.securityfocus.com/archive/1/265456

www.bireme.br/security.htm

www.iss.net/security_center/static/8660.php

www.securityfocus.com/bid/4383

www.securityfocus.com/bid/4384

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

83.2%

JSON

Related for CVE-2002-0508

cvelist1 nvd1