Lucene search

[email protected]CVE-2002-2114

HistoryDec 31, 2002 - 5:00 a.m.

CVE-2002-2114

2002-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

artekopia netjuke

remote code execution

cve-2002-2114

web server security

nvd

8.6 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.032 Low

EPSS

Percentile

91.0%

JSON

Artekopia Netjuke before 1.0 b7 allows remote attackers to execute arbitrary code on the web server, possibly via the section parameter, which is passed to an eval call.

CPENameOperatorVersion
netjuke:netjukenetjukeeq1.0_b1
netjuke:netjukenetjukeeq1.0_b4
netjuke:netjukenetjukeeq1.0_b6
netjuke:netjukenetjukeeq1.0_b3
netjuke:netjukenetjukeeq1.0_b2
netjuke:netjukenetjukeeq1.0_b5

CPE	Name	Operator	Version
netjuke:netjuke	netjuke	eq	1.0_b1
netjuke:netjuke	netjuke	eq	1.0_b4
netjuke:netjuke	netjuke	eq	1.0_b6
netjuke:netjuke	netjuke	eq	1.0_b3
netjuke:netjuke	netjuke	eq	1.0_b2
netjuke:netjuke	netjuke	eq	1.0_b5

References

sourceforge.net/tracker/index.php?func=detail&aid=507312&group_id=42076&atid=432052

www.securityfocus.com/bid/3988

exchange.xforce.ibmcloud.com/vulnerabilities/8101

8.6 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.032 Low

EPSS

Percentile

91.0%

JSON