CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-0717

PHP 4.2.0 and 4.2.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an HTTP POST request with certain arguments in a multipart/form-data form, which generates an error condition that is not properly handled and causes improper memory to be freed.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.049

EPSS Ranking 89.2%

CVSS Severity

CVSS v2 Score 7.5

References

http://marc.info/?l=bugtraq&m=102734515923277&w=2
http://marc.info/?l=bugtraq&m=102734516023281&w=2
http://www.cert.org/advisories/CA-2002-21.html
http://www.iss.net/security_center/static/9635.php
http://www.kb.cert.org/vuls/id/929115
http://marc.info/?l=bugtraq&m=102734515923277&w=2
http://marc.info/?l=bugtraq&m=102734516023281&w=2
http://www.cert.org/advisories/CA-2002-21.html
http://www.iss.net/security_center/static/9635.php
http://www.kb.cert.org/vuls/id/929115

Products affected by CVE-2002-0717

Php » Php » Version: 4.2.0

cpe:2.3:a:php:php:4.2.0
Php » Php » Version: 4.2.1

cpe:2.3:a:php:php:4.2.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0717

Products

Pricing

Contact Us