CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-0333

Directory traversal vulnerability in xtell (xtelld) 1.91.1 and earlier, and 2.x before 2.7, allows remote attackers to read files with short names, and local users to read more files using a symlink with a short name, via a .. in the TTY argument.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.018

EPSS Ranking 81.9%

CVSS Severity

CVSS v2 Score 5.0

References

http://marc.info/?l=bugtraq&m=101494896516467&w=2
http://www.debian.org/security/2002/dsa-121
http://www.iss.net/security_center/static/8313.php
http://www.securityfocus.com/bid/4194
http://marc.info/?l=bugtraq&m=101494896516467&w=2
http://www.debian.org/security/2002/dsa-121
http://www.iss.net/security_center/static/8313.php
http://www.securityfocus.com/bid/4194

Products affected by CVE-2002-0333

Xtell » Xtell » Version: 1.91.1

cpe:2.3:a:xtell:xtell:1.91.1
Xtell » Xtell » Version: 2.6.1

cpe:2.3:a:xtell:xtell:2.6.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0333

Products

Pricing

Contact Us