CVE-2002-0387

Опубликовано: 18 мар. 2003

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Buffer overflow in gxnsapi6.dll NSAPI plugin of the Connector Module for Sun ONE Application Server before 6.5 allows remote attackers to execute arbitrary code via a long HTTP request URL.

Ссылки

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/52022
http://www.atstake.com/research/advisories/2003/a031303-1.txt
Patch
Vendor Advisory
http://www.ciac.org/ciac/bulletins/n-064.shtml
http://www.securityfocus.com/bid/7082
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/11529
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/52022
http://www.atstake.com/research/advisories/2003/a031303-1.txt
Patch
Vendor Advisory
http://www.ciac.org/ciac/bulletins/n-064.shtml
http://www.securityfocus.com/bid/7082
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/11529

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:sun:one_application_server:6.0:*:*:*:*:*:*:*

cpe:2.3:a:sun:one_application_server:6.5:*:*:*:*:*:*:*

EPSS

Процентиль: 88%

0.0385

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-phxq-h84m-jv48

github

почти 4 года назад