Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1825

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2002-1825
Last Modified 05 Sep 2008 04:31:36
Published 31 Dec 2002 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-1825

Summary

Format string vulnerability in PerlRTE_example1.pl in WASD 7.1, 7.2.0 through 7.2.3, and 8.0.0 allows remote attackers to execute arbitrary commands or crash the server via format strings in the $name variable.

Vulnerable Systems

Application

  • Wasd Http Server 7.1

  • Wasd Http Server 7.2

  • Wasd Http Server 7.2.1

  • Wasd Http Server 7.2.2

  • Wasd Http Server 7.2.3

  • Wasd Http Server 8.0


References

BID - 5811

XF - wasd-http-perlrte-format-string(10213)

MISC - http://www.teaser.fr/~jlgailly/security/wasd-vuln-2002-09.txt

CONFIRM - http://wasd.vsm.com.au/ht_root/doc/misc/wasd_advisory_020925.txt

OSVDB - 21288


Last Updated: 27 May 2016 10:37:30