Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0687

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2002-0687
Last Modified 05 Sep 2008 04:28:41
Published 23 Jul 2002 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0687

Summary

The "through the web code" capability for Zope 2.0 through 2.5.1 b1 allows untrusted users to shut down the Zope server via certain headers.

Vulnerable Systems

Application

  • Zope 2.5.1b1


References

CONFIRM - http://www.zope.org/Products/Zope/Hotfix_2002-04-15/security_alert

BID - 5813

REDHAT - RHSA-2002:060

OSVDB - 5166

XF - zope-inject-headers-dos(9621)


Last Updated: 27 May 2016 10:37:02