CVE-2002-1869

2022-10-0316:23:49

mitre

www.cve.org

heysoft eventsave

log file write

security vulnerability

4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

24.1%

JSON

Heysoft EventSave 5.1 and 5.2 and Heysoft EventSave+ 5.1 and 5.2 does not check whether the log file can be written to, which allows attackers to prevent events from being recorded by opening the log file using an application such as Microsoft’s Event Viewer.

References

securitytracker.com/id?1005517

www.heysoft.de/nt/eventlog/hsb01e.htm

www.iss.net/security_center/static/10535.php

www.securityfocus.com/bid/6095