Vulnerability Details CVE-2002-2233
Directory traversal vulnerability in Enceladus Server Suite 3.9 allows remote attackers to list arbitrary directories and possibly cause a denial of service via "@" (at) characters in a CD (CWD) command, such as (1) "@/....\", (2) "@@@/..c:\", or (3) "@/..@/..".
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 39.1%
CVSS Severity
CVSS v2 Score 8.3
References
- http://archives.neohapsis.com/archives/bugtraq/2002-12/0193.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11019
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11020
- http://archives.neohapsis.com/archives/bugtraq/2002-12/0193.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11019
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11020
Products affected by CVE-2002-2233
-
cpe:2.3:a:mollensoft_software:enceladus_server_suite:3.9