Lucene search

[email protected]NVD:CVE-2002-2158

HistoryDec 31, 2002 - 5:00 a.m.

CVE-2002-2158

2002-12-3105:00:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.7

Confidence

Low

EPSS

0.006

Percentile

78.5%

JSON

zenTrack 2.0.3 and earlier allows remote attackers to obtain the full path to the web root via an invalid ticket ID, which leaks the path in an error message.

Affected configurations

Nvd

Node

zendocszentrackMatch2.0.1c_beta

zendocszentrackMatch2.0.2c_beta

zendocszentrackMatch2.0.3

VendorProductVersionCPE
zendocszentrack2.0.1c_betacpe:2.3:a:zendocs:zentrack:2.0.1c_beta:*:*:*:*:*:*:*
zendocszentrack2.0.2c_betacpe:2.3:a:zendocs:zentrack:2.0.2c_beta:*:*:*:*:*:*:*
zendocszentrack2.0.3cpe:2.3:a:zendocs:zentrack:2.0.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
zendocs	zentrack	2.0.1c_beta	cpe:2.3:a:zendocs:zentrack:2.0.1c_beta:::::::*
zendocs	zentrack	2.0.2c_beta	cpe:2.3:a:zendocs:zentrack:2.0.2c_beta:::::::*
zendocs	zentrack	2.0.3	cpe:2.3:a:zendocs:zentrack:2.0.3:::::::*

References

online.securityfocus.com/archive/1/276121

www.iss.net/security_center/static/9312.php

www.securityfocus.com/bid/4973

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.7

Confidence

Low

EPSS

0.006

Percentile

78.5%

JSON

Related for NVD:CVE-2002-2158

cve1 cvelist1