Lucene search

[email protected]CVE-2002-0896

HistoryOct 04, 2002 - 4:00 a.m.

CVE-2002-0896

2002-10-0404:00:00

[email protected]

web.nvd.nist.gov

swatch

throttle

capability

fail

report

events

attackers

avoid

detection

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.5 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.0%

JSON

The throttle capability in Swatch may fail to report certain events if (1) the same type of event occurs after the throttle period, or (2) when multiple events matching the same “watchfor” expression do not occur after the throttle period, which could allow attackers to avoid detection.

Affected configurations

NVD

Node

swatchswatchMatch3.0.3

swatchswatchMatch3.0.4

CPENameOperatorVersion
swatch:swatchswatcheq3.0.3
swatch:swatchswatcheq3.0.4

CPE	Name	Operator	Version
swatch:swatch	swatch	eq	3.0.3
swatch:swatch	swatch	eq	3.0.4

References

online.securityfocus.com/archive/1/272582

www.iss.net/security_center/static/9100.php

www.securityfocus.com/bid/4746

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.5 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.0%

JSON

Related for CVE-2002-0896

nvd1 cvelist1 debiancve1