CVE-2002-0094

2003-04-0205:00:00

mitre

www.cve.org

AI Score

7.7

Confidence

High

EPSS

0.011

Percentile

84.7%

JSON

config_converters.py in BSCW (Basic Support for Cooperative Work) 3.x and versions before 4.06 allows remote attackers to execute arbitrary commands via shell metacharacters in the file name during filename conversion.

References

bscw.gmd.de/WhatsNew.html

www.iss.net/security_center/static/7774.php

www.securityfocus.com/archive/1/248000

www.securityfocus.com/bid/3776