CVE-2002-1627

Sažetak

Directory traversal vulnerability in quiz.cgi for Mike Spice Quiz Me! before 0.6 allows remote attackers to write arbitrary files via .. (dot dot) sequences in the quiz parameter.

Reference

http://securitytracker.com/id?1003254
http://www.kb.cert.org/vuls/id/318835
http://www.securityfocus.com/bid/3857
https://exchange.xforce.ibmcloud.com/vulnerabilities/7970

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

11-07-2017 - 01:29

Objavljeno

31-12-2002 - 05:00