Lucene search
MitreCVE-2002-1410HistoryApr 11, 2003 - 4:00 a.m.
CVE-2002-1410
2003-04-1104:00:00
mitre
web.nvd.nist.gov
27
easy guestbook
cgi
administrator
unauthorized access
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.1
Confidence
Low
EPSS
0.033
Percentile
91.4%
Easy Guestbook CGI programs do not authenticate the administrator, which allows remote attackers to (1) delete entries via direct access of admin.cgi, or (2) reconfigure Guestbook via direct access of config.cgi.
Affected configurations
Node
ben_chiversben_chivers_guestbookMatch1.0
OReasy_scripts_archiveeasy_guestbookMatch1.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ben_chivers | ben_chivers_guestbook | 1.0 | cpe:2.3:a:ben_chivers:ben_chivers_guestbook:1.0:*:*:*:*:*:*:* |
| easy_scripts_archive | easy_guestbook | 1.0 | cpe:2.3:a:easy_scripts_archive:easy_guestbook:1.0:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2002-1410
2003-03-18 05:00:00
nvd
nvd
CVE-2002-1410
2003-04-11 04:00:00
exploitdb
exploitdb
Ben Chivers Easy Guestbook 1.0 - Administrative Access
2002-07-29 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.1
Confidence
Low
EPSS
0.033
Percentile
91.4%
Related for CVE-2002-1410