Lucene search

[email protected]CVE-2002-1213

HistoryOct 28, 2002 - 5:00 a.m.

CVE-2002-1213

2002-10-2805:00:00

[email protected]

web.nvd.nist.gov

cve-2002-1213

directory traversal

radiobird software webserver

remote attack

http request

vulnerability

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.8 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.4%

JSON

Directory traversal vulnerability in RadioBird Software WebServer 4 Everyone 1.23 and 1.27, and other versions before 1.30, allows remote attackers to read arbitrary files via an HTTP request with “…” (dot-dot) sequences containing URL-encoded forward slash (“%2F”) characters.

Affected configurations

NVD

Node

radiobird_softwarewebserver_4_allMatch1.23

radiobird_softwarewebserver_4_allMatch1.27

CPENameOperatorVersion
radiobird_software:webserver_4_allradiobird software webserver 4 alleq1.23
radiobird_software:webserver_4_allradiobird software webserver 4 alleq1.27

CPE	Name	Operator	Version
radiobird_software:webserver_4_all	radiobird software webserver 4 all	eq	1.23
radiobird_software:webserver_4_all	radiobird software webserver 4 all	eq	1.27

References

www.idefense.com/application/poi/display?id=49&type=vulnerabilities&flashstatus=true

www.iss.net/security_center/static/10373.php

www.securityfocus.com/bid/5968

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.8 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.4%

JSON

Related for CVE-2002-1213

nvd1 cvelist1 securityvulns1