Lucene search

[email protected]CVE-2002-1034

HistoryOct 04, 2002 - 4:00 a.m.

CVE-2002-1034

2002-10-0404:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2002-1034

sunps irunbook

remote file read

absolute pathname

nvd

7.5 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.009 Low

EPSS

Percentile

82.2%

JSON

none.php for SunPS iRunbook 2.5.2 allows remote attackers to read arbitrary files via an absolute pathname in the argument.

CPENameOperatorVersion
sun:i-runbooksun i-runbookeq2.5.2

CPE	Name	Operator	Version
sun:i-runbook	sun i-runbook	eq	2.5.2

References

online.securityfocus.com/archive/1/281786

www.iss.net/security_center/static/9549.php

www.securityfocus.com/bid/5209

7.5 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.009 Low

EPSS

Percentile

82.2%

JSON