Lucene search
HistoryApr 02, 2003 - 5:00 a.m.
CVE-2002-0984
cve-2002-0984
irc script
light 2.7.x
light 2.8.x
remote code execution
epic4 code
vulnerability
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.6 High
AI Score
Confidence
High
0.026 Low
EPSS
Percentile
90.4%
The IRC script included in Light 2.7.x before 2.7.30p5, and 2.8.x before 2.8pre10, running EPIC allows remote attackers to execute arbitrary code if the user joins a channel whose topic includes EPIC4 code.
Affected configurations
Node
lightlightMatch2.7.30p4
ORlightlightMatch2.8_pre9
| CPE | Name | Operator | Version |
|---|---|---|---|
| light:light | light | eq | 2.7.30p4 |
| light:light | light | eq | 2.8_pre9 |
Related
osv
osv
epic4-script-light - arbitrary script execution
2002-08-22 00:00:00
cvelist
cvelist
CVE-2002-0984
2003-04-02 05:00:00
nessus
nessus
Debian DSA-156-1 : epic4-script-light - arbitrary script execution
2004-09-29 00:00:00
openvas
openvas
Debian Security Advisory DSA 156-1 (epic4-script-light)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-156)
2008-01-17 00:00:00
nvd
nvd
CVE-2002-0984
2002-09-24 04:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.6 High
AI Score
Confidence
High
0.026 Low
EPSS
Percentile
90.4%
Related for CVE-2002-0984