Lucene search

[email protected]CVE-2002-0801

HistoryAug 12, 2002 - 4:00 a.m.

CVE-2002-0801

2002-08-1204:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2002-0801

buffer overflow

isapi

dll

macromedia

jrun 3.1

remote code execution

http

security vulnerability

8.1 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.174 Low

EPSS

Percentile

96.0%

JSON

Buffer overflow in the ISAPI DLL filter for Macromedia JRun 3.1 allows remote attackers to execute arbitrary code via a direct request to the filter with a long HTTP host header field in a URL for a .jsp file.

CPENameOperatorVersion
macromedia:jrunmacromedia jruneq3.1
macromedia:jrunmacromedia jruneq3.0

CPE	Name	Operator	Version
macromedia:jrun	macromedia jrun	eq	3.1
macromedia:jrun	macromedia jrun	eq	3.0

References

archives.neohapsis.com/archives/vulnwatch/2002-q2/0085.html

online.securityfocus.com/archive/1/274528

online.securityfocus.com/archive/1/274601

www.cert.org/advisories/CA-2002-14.html

www.iss.net/security_center/static/9194.php

www.kb.cert.org/vuls/id/703835

www.osvdb.org/5082

www.securityfocus.com/bid/4873

8.1 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.174 Low

EPSS

Percentile

96.0%

JSON

Related for CVE-2002-0801

cert1