CVE-2002-0463

EPSS 0.66%
Veröffentlicht 12.08.2002 04:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

home.php in ARSC (Really Simple Chat) 1.0.1 and earlier allows remote attackers to determine the full pathname of the web server via an invalid language in the arsc_language parameter, which leaks the pathname in an error message.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Arsc Really Simple Chat ≫ Arsc Really Simple Chat Version1.0

Arsc Really Simple Chat ≫ Arsc Really Simple Chat Version1.0.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.66%	0.686

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://www.iss.net/security_center/static/8472.php

http://www.securityfocus.com/archive/1/262652

Vendor Advisory

http://www.securityfocus.com/archive/1/262802

Vendor Advisory

http://www.securityfocus.com/bid/4307

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2002-0463

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2002-0463

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2002-0463

EUVD