CVE-2002-0299

2003-04-0205:00:00

mitre

www.cve.org

7.5 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.5%

JSON

CNet CatchUp before 1.3.1 allows attackers to execute arbitrary code via a .RVP file that creates a file with an arbitrary extension (such as .BAT), which is executed during a scan.

References

marc.info/?l=bugtraq&m=101438631921749&w=2

www.iss.net/security_center/static/8035.php

www.securityfocus.com/bid/3975