Lucene search

[email protected]NVD:CVE-2002-1361

HistoryDec 23, 2002 - 5:00 a.m.

CVE-2002-1361

2002-12-2305:00:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

High

EPSS

0.055

Percentile

93.3%

JSON

overflow.cgi CGI script in Sun Cobalt RaQ 4 with the SHP (Security Hardening Patch) installed allows remote attackers to execute arbitrary code via a POST request with shell metacharacters in the email parameter.

Affected configurations

Nvd

Node

suncobalt_raq_4

VendorProductVersionCPE
suncobalt_raq_4*cpe:2.3:h:sun:cobalt_raq_4:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
sun	cobalt_raq_4	*	cpe:2.3:h:sun:cobalt_raq_4::::::::

References

marc.info/?l=bugtraq&m=103912513522807&w=2

sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/49377

www.cert.org/advisories/CA-2002-35.html

www.ciac.org/ciac/bulletins/n-025.shtml

www.kb.cert.org/vuls/id/810921

www.securityfocus.com/bid/6326

exchange.xforce.ibmcloud.com/vulnerabilities/10776

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.6

Confidence

High

EPSS

0.055

Percentile

93.3%

JSON

Related for NVD:CVE-2002-1361

cert1 openvas1 cvelist1 exploitdb1 cve1 nessus1