7.5

CVE-2002-0066

EPSS 1.67%
Veröffentlicht 22.04.2002 04:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Funk Software Proxy Host 3.x before 3.09A creates a Named Pipe that does not require authentication and is installed with insecure access control, which allows local and possibly remote users to use the Proxy Host's configuration utilities and gain privileges.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Bindview ≫ Netrc Version1.0

Bindview ≫ Netrc Version3.06

Funk Software ≫ Funk Software Proxy Version3.0

Funk Software ≫ Funk Software Proxy Version3.06

Funk Software ≫ Funk Software Proxy Version3.09

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.67%	0.813

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://razor.bindview.com/publish/advisories/adv_FunkProxy.html

Patch

Vendor Advisory

http://www.iss.net/security_center/static/8793.php

http://www.securityfocus.com/bid/4460

https://nvd.nist.gov/vuln/detail/CVE-2002-0066

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2002-0066

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2002-0066

EUVD