1. CVE-Search
  2. CVE-2002-0710
ID CVE-2002-0710
Summary Directory traversal vulnerability in sendform.cgi 1.44 and earlier allows remote attackers to read arbitrary files by specifying the desired files in the BlurbFilePath parameter.
References
Vulnerable Configurations
  • cpe:2.3:a:rod_clark:sendform.cgi:1.4:*:*:*:*:*:*:*
    cpe:2.3:a:rod_clark:sendform.cgi:1.4:*:*:*:*:*:*:*
  • cpe:2.3:a:rod_clark:sendform.cgi:1.4.1:*:*:*:*:*:*:*
    cpe:2.3:a:rod_clark:sendform.cgi:1.4.1:*:*:*:*:*:*:*
  • cpe:2.3:a:rod_clark:sendform.cgi:1.4.2:*:*:*:*:*:*:*
    cpe:2.3:a:rod_clark:sendform.cgi:1.4.2:*:*:*:*:*:*:*
  • cpe:2.3:a:rod_clark:sendform.cgi:1.4.3:*:*:*:*:*:*:*
    cpe:2.3:a:rod_clark:sendform.cgi:1.4.3:*:*:*:*:*:*:*
  • cpe:2.3:a:rod_clark:sendform.cgi:1.4.4:*:*:*:*:*:*:*
    cpe:2.3:a:rod_clark:sendform.cgi:1.4.4:*:*:*:*:*:*:*
CVSS
Base: 6.4 (as of 18-10-2016 - 02:21)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:N
refmap via4
bid 5286
bugtraq 20020730 Directory traversal vulnerability in sendform.cgi
confirm http://www.scn.org/~bb615/scripts/sendform.html
osvdb 3568
vulnwatch 20020731 [VulnWatch] Directory traversal vulnerability in sendform.cgi
xf sendform-blurbfile-directory-traversal(9725)
Last major update 18-10-2016 - 02:21
Published 12-08-2002 - 04:00
Last modified 18-10-2016 - 02:21
Back to Top