exploitDog

CVE-2002-0202

Опубликовано: 16 мая 2002

Источник: nvd

CVSS2: 3.6

EPSS Низкий

Описание

PaintBBS 1.2 installs certain files and directories with insecure permissions, which allows local users to (1) obtain the encrypted server password via the world-readable oekakibbs.conf file, or (2) modify the server configuration via the world-writeable /oekaki/ folder.

Ссылки

http://online.securityfocus.com/archive/1/251985
Patch
Vendor Advisory
http://www.iss.net/security_center/static/7982.php
Patch
Vendor Advisory
http://www.securityfocus.com/bid/3948
http://online.securityfocus.com/archive/1/251985
Patch
Vendor Advisory
http://www.iss.net/security_center/static/7982.php
Patch
Vendor Advisory
http://www.securityfocus.com/bid/3948

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:paintbbs:paintbbs:1.2:*:*:*:*:*:*:*

EPSS

Процентиль: 22%

0.00073

Низкий

3.6 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-cvh7-v2m3-p2pw

github

почти 4 года назад

PaintBBS 1.2 installs certain files and directories with insecure permissions, which allows local users to (1) obtain the encrypted server password via the world-readable oekakibbs.conf file, or (2) modify the server configuration via the world-writeable /oekaki/ folder.

EPSS

Процентиль: 22%

0.00073

Низкий

3.6 Low

CVSS2

Дефекты

NVD-CWE-Other