CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-1058

Directory traversal vulnerability in splashAdmin.php for Cobalt Qube 3.0 allows local users and remote attackers, to gain privileges as the Qube Admin via .. (dot dot) sequences in the sessionId cookie that point to an alternate session file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.03

EPSS Ranking 85.9%

CVSS Severity

CVSS v2 Score 10.0

References

http://archives.neohapsis.com/archives/bugtraq/2002-07/0261.html
http://www.iss.net/security_center/static/9669.php
http://www.securityfocus.com/bid/5297
http://archives.neohapsis.com/archives/bugtraq/2002-07/0261.html
http://www.iss.net/security_center/static/9669.php
http://www.securityfocus.com/bid/5297

Products affected by CVE-2002-1058

Cobalt » Qube » Version: 3.0

cpe:2.3:a:cobalt:qube:3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-1058

Products

Pricing

Contact Us