Lucene search

MitreCVE-2003-1410

HistoryOct 20, 2007 - 10:00 a.m.

CVE-2003-1410

2007-10-2010:00:00

CWE-94

mitre

web.nvd.nist.gov

cve-2003-1410

php

remote file inclusion

vulnerability

email.php

email.php3

cedric email reader

nvd

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.051

Percentile

93.1%

JSON

PHP remote file inclusion vulnerability in email.php (aka email.php3) in Cedric Email Reader 0.2 and 0.3 allows remote attackers to execute arbitrary PHP code via the cer_skin parameter.

Affected configurations

Nvd

Node

isocacedric_email_readerMatch0.2

isocacedric_email_readerMatch0.3

VendorProductVersionCPE
isocacedric_email_reader0.2cpe:2.3:a:isoca:cedric_email_reader:0.2:*:*:*:*:*:*:*
isocacedric_email_reader0.3cpe:2.3:a:isoca:cedric_email_reader:0.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
isoca	cedric_email_reader	0.2	cpe:2.3:a:isoca:cedric_email_reader:0.2:::::::*
isoca	cedric_email_reader	0.3	cpe:2.3:a:isoca:cedric_email_reader:0.3:::::::*

References

secunia.com/advisories/8024

www.osvdb.org/5487

www.securityfocus.com/archive/1/311173

www.securityfocus.com/bid/6818

exchange.xforce.ibmcloud.com/vulnerabilities/11278

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.051

Percentile

93.1%

JSON

Related for CVE-2003-1410