CyberSec.Space Logo
Back to CVE Browser

CVE-2002-0436

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0660%
EPSS Percentile10.25th
PublishedJul 26, 2002
Last ModifiedApr 16, 2026

Vulnerability Description

sscd_suncourier.pl CGI script in the Sun Sunsolve CD pack allows remote attackers to execute arbitrary commands via shell metacharacters in the email address parameter.

Affected Platforms (CPE)

πŸ’»
Sun

Solaris

= 7.0
πŸ’»
Sun

Solaris

= 8.0
πŸ’»
Sun

Sunos

= 5.7
πŸ’»
Sun

Sunos

= 5.8

References & Advisories

πŸ”— http://www.iss.net/security_center/static/8435.php
πŸ”— http://www.securityfocus.com/archive/1/261544
πŸ”— http://www.securityfocus.com/bid/4269
πŸ”— http://www.iss.net/security_center/static/8435.php
πŸ”— http://www.securityfocus.com/archive/1/261544
πŸ”— http://www.securityfocus.com/bid/4269

Related Vulnerabilities

CVE-1999-056810.0

rpc.admind in Solaris is not running in a secure mode.

CVE-1999-097310.0

Buffer overflow in Solaris snoop program allows remote attackers to gain root privileges via a long domain name when snoop is runn...

CVE-2020-1487110.0

Vulnerability in the Oracle Solaris product of Oracle Systems (component: Pluggable authentication module). Supported versions tha...

CVE-1999-097410.0

Buffer overflow in Solaris snoop allows remote attackers to gain root privileges via GETQUOTA requests to the rpc.rquotad service.