Lucene search
MitreCVE-2002-1425HistorySep 01, 2004 - 4:00 a.m.
CVE-2002-1425
2004-09-0104:00:00
mitre
web.nvd.nist.gov
20
cve-2002-1425
directory traversal vulnerability
munpack
mpack 1.5
remote attackers
file creation
nvd
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
AI Score
6.5
Confidence
Low
EPSS
0.007
Percentile
80.9%
Directory traversal vulnerability in munpack in mpack 1.5 and earlier allows remote attackers to create new files in the parent directory via a …/ (dot-dot) sequence in the filename to be extracted.
Affected configurations
Node
john_g._myersmpackRange≤1.5
| Vendor | Product | Version | CPE |
|---|---|---|---|
| john_g._myers | mpack | * | cpe:2.3:a:john_g._myers:mpack:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2002-1425
2004-09-01 04:00:00
debiancve
debiancve
CVE-2002-1425
2004-09-01 04:00:00
osv
osv
mpack - buffer overflow
2002-08-01 00:00:00
nvd
nvd
CVE-2002-1425
2003-04-11 04:00:00
openvas
openvas
Debian: Security Advisory (DSA-141)
2008-01-17 00:00:00
Debian Security Advisory DSA 141-1 (mpack)
2008-01-17 00:00:00
nessus
nessus
Debian DSA-141-1 : mpack - buffer overflow
2004-09-29 00:00:00
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
AI Score
6.5
Confidence
Low
EPSS
0.007
Percentile
80.9%
Related for CVE-2002-1425