CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-0539

Demarc PureSecure 1.05 allows remote attackers to gain administrative privileges via a SQL injection attack in a session ID that is stored in the s_key cookie.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.1%

CVSS Severity

CVSS v2 Score 10.0

References

http://archives.neohapsis.com/archives/bugtraq/2002-04/0168.html
http://online.securityfocus.com/archive/1/267941
http://www.iss.net/security_center/static/8854.php
http://www.osvdb.org/5239
http://www.securityfocus.com/bid/4520
http://archives.neohapsis.com/archives/bugtraq/2002-04/0168.html
http://online.securityfocus.com/archive/1/267941
http://www.iss.net/security_center/static/8854.php
http://www.osvdb.org/5239
http://www.securityfocus.com/bid/4520

Products affected by CVE-2002-0539

Demarc Security » Puresecure » Version: 1.0.5_for_unix

cpe:2.3:a:demarc_security:puresecure:1.0.5_for_unix
Demarc Security » Puresecure » Version: 1.0.5_for_windows

cpe:2.3:a:demarc_security:puresecure:1.0.5_for_windows

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0539

Products

Pricing

Contact Us