Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0202


Vulnerability Score 3.6 3.6
CVE Id CVE-2002-0202
Last Modified 10 Sep 2008 08:00:42
Published 16 May 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE



PaintBBS 1.2 installs certain files and directories with insecure permissions, which allows local users to (1) obtain the encrypted server password via the world-readable oekakibbs.conf file, or (2) modify the server configuration via the world-writeable /oekaki/ folder.

Vulnerable Systems


  • Paintbbs 1.2


XF - paintbbs-insecure-permissions(7982)

BUGTRAQ - 20020123 Vulnerabilty in PaintBBS v1.2

BID - 3948

Last Updated: 27 May 2016 10:36:49