Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2002-0430
HistoryAug 12, 2002 - 4:00 a.m.

CVE-2002-0430

2002-08-1204:00:00
[email protected]
web.nvd.nist.gov
4

CVSS2

3.7

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:P/I:P/A:P

AI Score

6.6

Confidence

Low

EPSS

0

Percentile

0.4%

JSON

MultiFileUploadHandler.php in the Sun Cobalt RaQ XTR administration interface allows local users to bypass authentication and overwrite arbitrary files via a symlink attack on a temporary file, followed by a request to MultiFileUpload.php.

Affected configurations

Nvd
Node
suncobalt_raq_2
OR
suncobalt_raq_3i
OR
suncobalt_raq_4
VendorProductVersionCPE
suncobalt_raq_2*cpe:2.3:h:sun:cobalt_raq_2:*:*:*:*:*:*:*:*
suncobalt_raq_3i*cpe:2.3:h:sun:cobalt_raq_3i:*:*:*:*:*:*:*:*
suncobalt_raq_4*cpe:2.3:h:sun:cobalt_raq_4:*:*:*:*:*:*:*:*

Related

exploitdb 2
cvelist 1
cve 1
exploitdb
exploitdb
Cobalt RaQ 2.0/3.0/4.0 XTR - 'MultiFileUpload.php' Authentication Bypass (1)
2002-03-08 00:00:00
Cobalt RaQ 2.0/3.0/4.0 XTR - 'MultiFileUpload.php' Authentication Bypass (2)
2002-03-08 00:00:00
cvelist
cvelist
CVE-2002-0430
2002-06-11 04:00:00
cve
cve
CVE-2002-0430
2002-08-12 04:00:00

CVSS2

3.7

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:N/C:P/I:P/A:P

AI Score

6.6

Confidence

Low

EPSS

0

Percentile

0.4%

JSON
Related for NVD:CVE-2002-0430
exploitdb2cvelist1cve1