CVE-2002-2033

faqmanager.cgi in FAQManager 2.2.5 and earlier allows remote attackers to read arbitrary files by specifying the filename in the toc parameter with a trailing null character (%00).
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:faqmanager:faqmanager.cgi:2.0:*:*:*:*:*:*:*
cpe:2.3:a:faqmanager:faqmanager.cgi:2.1:*:*:*:*:*:*:*
cpe:2.3:a:faqmanager:faqmanager.cgi:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:faqmanager:faqmanager.cgi:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:faqmanager:faqmanager.cgi:2.2:*:*:*:*:*:*:*
cpe:2.3:a:faqmanager:faqmanager.cgi:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:faqmanager:faqmanager.cgi:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:faqmanager:faqmanager.cgi:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:faqmanager:faqmanager.cgi:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:faqmanager:faqmanager.cgi:2.2.5:*:*:*:*:*:*:*

History

20 Nov 2024, 23:42

Type Values Removed Values Added
References () http://archives.neohapsis.com/archives/bugtraq/2002-01/0065.html - Patch () http://archives.neohapsis.com/archives/bugtraq/2002-01/0065.html - Patch
References () http://www.iss.net/security_center/static/7833.php - Patch () http://www.iss.net/security_center/static/7833.php - Patch
References () http://www.securityfocus.com/bid/3810 - Patch () http://www.securityfocus.com/bid/3810 - Patch

Information

Published : 2002-12-31 05:00

Updated : 2024-11-20 23:42


NVD link : CVE-2002-2033

Mitre link : CVE-2002-2033

CVE.ORG link : CVE-2002-2033


JSON object : View

Products Affected

faqmanager

  • faqmanager.cgi