CVE-2002-0488

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2002-0488
Linux Directory Penguin traceroute.pl CGI script 1.0 allows remote attackers to execute arbitrary code via shell metacharacters in the host parameter.

10.0 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://www.iss.net/security_center/static/8600.php Patch Vendor Advisory
http://www.linux-directory.com/scripts/traceroute.pl URL Repurposed
http://www.securityfocus.com/archive/1/263285 Vendor Advisory
http://www.securityfocus.com/bid/4332 Patch Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:linux_directory_penguin:linux_directory_penguin_traceroute:1.0:*:*:*:*:*:*:*
History

14 Feb 2024, 01:17

Type Values Removed Values Added
References () http://www.linux-directory.com/scripts/traceroute.pl - () http://www.linux-directory.com/scripts/traceroute.pl - URL Repurposed
Information

Published : 2002-08-12 04:00

Updated : 2024-02-14 01:17

NVD link : CVE-2002-0488

Mitre link : CVE-2002-0488

CVE.ORG link : CVE-2002-0488

JSON object : View

Products Affected

linux_directory_penguin

  • linux_directory_penguin_traceroute
CWE
NVD-CWE-Other