Lucene search
MitreCVE-2001-1050HistoryFeb 02, 2002 - 5:00 a.m.
CVE-2001-1050
2002-02-0205:00:00
mitre
web.nvd.nist.gov
27
infosec
cccsoftware
php script
vulnerability
remote attack
http request
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.3
Confidence
Low
EPSS
0.008
Percentile
81.1%
CCCSoftware CCC PHP script allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.
Affected configurations
Node
cccsoftwarecccMatch0.91
ORcccsoftwarecccMatch0.92
ORcccsoftwarecccMatch0.94
ORcccsoftwarecccMatch0.95
ORcccsoftwarecccMatch0.96
ORcccsoftwarecccMatch0.97
ORcccsoftwarecccMatch0.98
ORcccsoftwarecccMatch0.99
ORcccsoftwarecccMatch1.0
ORcccsoftwarecccMatch1.02
ORcccsoftwarecccMatch1.03
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cccsoftware | ccc | 0.91 | cpe:2.3:a:cccsoftware:ccc:0.91:*:*:*:*:*:*:* |
| cccsoftware | ccc | 0.92 | cpe:2.3:a:cccsoftware:ccc:0.92:*:*:*:*:*:*:* |
| cccsoftware | ccc | 0.94 | cpe:2.3:a:cccsoftware:ccc:0.94:*:*:*:*:*:*:* |
| cccsoftware | ccc | 0.95 | cpe:2.3:a:cccsoftware:ccc:0.95:*:*:*:*:*:*:* |
| cccsoftware | ccc | 0.96 | cpe:2.3:a:cccsoftware:ccc:0.96:*:*:*:*:*:*:* |
| cccsoftware | ccc | 0.97 | cpe:2.3:a:cccsoftware:ccc:0.97:*:*:*:*:*:*:* |
| cccsoftware | ccc | 0.98 | cpe:2.3:a:cccsoftware:ccc:0.98:*:*:*:*:*:*:* |
| cccsoftware | ccc | 0.99 | cpe:2.3:a:cccsoftware:ccc:0.99:*:*:*:*:*:*:* |
| cccsoftware | ccc | 1.0 | cpe:2.3:a:cccsoftware:ccc:1.0:*:*:*:*:*:*:* |
| cccsoftware | ccc | 1.02 | cpe:2.3:a:cccsoftware:ccc:1.02:*:*:*:*:*:*:* |
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.3
Confidence
Low
EPSS
0.008
Percentile
81.1%
Related for CVE-2001-1050