CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-2081

cphost.dll in Microsoft Site Server 3.0 allows remote attackers to cause a denial of service (disk consumption) via an HTTP POST of a file with a long TargetURL parameter, which causes Site Server to abort and leaves the uploaded file in c:\temp.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.191

EPSS Ranking 95.0%

CVSS Severity

CVSS v2 Score 5.0

References

http://archives.neohapsis.com/archives/vulnwatch/2002-q1/0033.html
http://www.iss.net/security_center/static/8053.php
http://www.securityfocus.com/bid/4002
http://archives.neohapsis.com/archives/vulnwatch/2002-q1/0033.html
http://www.iss.net/security_center/static/8053.php
http://www.securityfocus.com/bid/4002

Products affected by CVE-2002-2081

Microsoft » Site Server » Version: 3.0

cpe:2.3:a:microsoft:site_server:3.0
Microsoft » Site Server Commerce » Version: 3.0

cpe:2.3:a:microsoft:site_server_commerce:3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-2081

Products

Pricing

Contact Us