Lucene search

[email protected]CVE-2002-1741

HistoryDec 31, 2002 - 5:00 a.m.

CVE-2002-1741

2002-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve

directory traversal

worldclient

alt-n technologies

mdaemon

vulnerability

7.1 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

0.4%

JSON

Directory traversal vulnerability in WorldClient.cgi in WorldClient for Alt-N Technologies MDaemon 5.0.5.0 and earlier allows local users to delete arbitrary files via a “…” (dot dot) in the Attachments parameter.

CPENameOperatorVersion
alt-n:worldclientalt-n worldclienteq5.0
alt-n:worldclientalt-n worldclienteq5.0.3
alt-n:worldclientalt-n worldclienteq5.0.1
alt-n:worldclientalt-n worldclienteq5.0.4
alt-n:worldclientalt-n worldclienteq5.0.5
alt-n:worldclientalt-n worldclienteq5.0.2

CPE	Name	Operator	Version
alt-n:worldclient	alt-n worldclient	eq	5.0
alt-n:worldclient	alt-n worldclient	eq	5.0.3
alt-n:worldclient	alt-n worldclient	eq	5.0.1
alt-n:worldclient	alt-n worldclient	eq	5.0.4
alt-n:worldclient	alt-n worldclient	eq	5.0.5
alt-n:worldclient	alt-n worldclient	eq	5.0.2

References

online.securityfocus.com/archive/1/271374

www.securityfocus.com/bid/4687

exchange.xforce.ibmcloud.com/vulnerabilities/9027

7.1 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

0.4%

JSON