ID CVE-2002-0752
Summary CGIscript.net csMailto.cgi program exports feedback to a file that is accessible from the web document root, which could allow remote attackers to obtain sensitive information by directly accessing the file.
References
Vulnerable Configurations
  • cpe:2.3:a:cgiscript.net:csmailto:*:*:*:*:*:*:*:*
    cpe:2.3:a:cgiscript.net:csmailto:*:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 05-09-2008 - 20:28)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:N/A:N
refmap via4
bugtraq 20020423 CGIscript.net - csMailto.cgi - Remote Command Execution
Last major update 05-09-2008 - 20:28
Published 12-08-2002 - 04:00
Last modified 05-09-2008 - 20:28
Back to Top