Lucene search
HistorySep 24, 2002 - 4:00 a.m.
CVE-2002-0984
cve-2002-0984
irc script
light 2.7.x
light 2.8.x
remote code execution
epic4 code
vulnerability
7.8 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.026 Low
EPSS
Percentile
90.2%
The IRC script included in Light 2.7.x before 2.7.30p5, and 2.8.x before 2.8pre10, running EPIC allows remote attackers to execute arbitrary code if the user joins a channel whose topic includes EPIC4 code.
| CPE | Name | Operator | Version |
|---|---|---|---|
| light:light | light | eq | 2.7.30p4 |
| light:light | light | eq | 2.8_pre9 |
Related
nessus
nessus
Debian DSA-156-1 : epic4-script-light - arbitrary script execution
2004-09-29 00:00:00
openvas
openvas
Debian Security Advisory DSA 156-1 (epic4-script-light)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-156)
2008-01-17 00:00:00
osv
osv
epic4-script-light - arbitrary script execution
2002-08-22 00:00:00
7.8 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.026 Low
EPSS
Percentile
90.2%
Related for CVE-2002-0984