Lucene search

[email protected]CVE-2002-2152

HistoryOct 03, 2022 - 4:23 p.m.

CVE-2002-2152

2022-10-0316:23:49

[email protected]

web.nvd.nist.gov

cve-2002-2152

software602

web server

security vulnerability

remote attackers

administrator privileges

http requests

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.1%

JSON

The Czech edition of Software602’s Web Server before 2002.0.02.0916 allows remote attackers to gain administrator privileges via direct HTTP requests to the /admin/ directory, which is not password protected.

Affected configurations

NVD

Node

software602602pro_lan_suiteMatch2002

CPENameOperatorVersion
software602:602pro_lan_suitesoftware602 602pro lan suiteeq2002

CPE	Name	Operator	Version
software602:602pro_lan_suite	software602 602pro lan suite	eq	2002

References

online.securityfocus.com/archive/1/296119

www.iss.net/security_center/static/10408.php

www.securityfocus.com/bid/6006

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.1%

JSON

Related for CVE-2002-2152

cvelist1 nvd1