Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-2217

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-2217
Last Modified 07 Feb 2009 12:21:57
Published 31 Dec 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-2217

Summary

Multiple PHP remote file inclusion vulnerabilities in Web Server Creator - Web Portal (WSC-WebPortal) 0.1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) l parameter to customize.php or the (2) pg parameter to index.php.

Vulnerable Systems

Application

  • Comscripts Web Server Creator 0.1


References

XF - webservercreator-customize-file-include(28815)

BID - 19896

SECTRACK - 1005712

XF - webservercreator-php-file-include(10689)

BID - 6251

MILW0RM - 2318

BUGTRAQ - 20021125 Web Server Creator - Web Portal 0.1 (PHP)


Last Updated: 27 May 2016 10:37:39