Lucene search

[email protected]NVD:CVE-2002-2360

HistoryDec 31, 2002 - 5:00 a.m.

CVE-2002-2360

2002-12-3105:00:00

CWE-264

[email protected]

web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.019 Low

EPSS

Percentile

88.6%

JSON

The RPC module in Webmin 0.21 through 0.99, when installed without root or admin privileges, allows remote attackers to read and write to arbitrary files and execute arbitrary commands via remote_foreign_require and remote_foreign_call requests.

Affected configurations

NVD

Node

webminwebminMatch0.21

webminwebminMatch0.22

webminwebminMatch0.31

webminwebminMatch0.41

webminwebminMatch0.42

webminwebminMatch0.51

webminwebminMatch0.76

webminwebminMatch0.77

webminwebminMatch0.78

webminwebminMatch0.79

webminwebminMatch0.80

webminwebminMatch0.85

webminwebminMatch0.88

webminwebminMatch0.91

webminwebminMatch0.92

webminwebminMatch0.93

webminwebminMatch0.94

webminwebminMatch0.950

webminwebminMatch0.960

webminwebminMatch0.970

webminwebminMatch0.980

webminwebminMatch0.990

References

www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2002-08/0403.html

www.iss.net/security_center/static/9983.php

www.securiteam.com/unixfocus/5CP0R1P80G.html

www.securityfocus.com/bid/5591

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.019 Low

EPSS

Percentile

88.6%

JSON

Related for NVD:CVE-2002-2360

cve1 cvelist1 nessus1