Lucene search

[email protected]NVD:CVE-2002-1742

HistoryDec 31, 2002 - 5:00 a.m.

CVE-2002-1742

2002-12-3105:00:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.8

Confidence

High

EPSS

0.012

Percentile

85.4%

JSON

SOAP::Lite 0.50 through 0.52 allows remote attackers to load arbitrary Perl functions by suppling a non-existent function in a script using a SOAP::Lite module, which causes the AUTOLOAD subroutine to trigger.

Affected configurations

Nvd

Node

paul_kulchenkosoap_liteMatch0.50

paul_kulchenkosoap_liteMatch0.51

paul_kulchenkosoap_liteMatch0.52

VendorProductVersionCPE
paul_kulchenkosoap_lite0.50cpe:2.3:a:paul_kulchenko:soap_lite:0.50:*:*:*:*:*:*:*
paul_kulchenkosoap_lite0.51cpe:2.3:a:paul_kulchenko:soap_lite:0.51:*:*:*:*:*:*:*
paul_kulchenkosoap_lite0.52cpe:2.3:a:paul_kulchenko:soap_lite:0.52:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
paul_kulchenko	soap_lite	0.50	cpe:2.3:a:paul_kulchenko:soap_lite:0.50:::::::*
paul_kulchenko	soap_lite	0.51	cpe:2.3:a:paul_kulchenko:soap_lite:0.51:::::::*
paul_kulchenko	soap_lite	0.52	cpe:2.3:a:paul_kulchenko:soap_lite:0.52:::::::*

References

ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02%3A02.asc

online.securityfocus.com/archive/1/267051

use.perl.org/articles/02/04/09/000212.shtml?tid=5

www.phrack.com/show.php?p=58&a=9

www.phrack.org/show.php?p=58&a=9

www.securityfocus.com/bid/4493

www.soaplite.com/

exchange.xforce.ibmcloud.com/vulnerabilities/8838

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.8

Confidence

High

EPSS

0.012

Percentile

85.4%

JSON

Related for NVD:CVE-2002-1742

cve1 cvelist1