CyberSec.Space Logo
Back to CVE Browser

CVE-2002-1974

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1580%
EPSS Percentile18.88th
PublishedDec 31, 2002
Last ModifiedApr 16, 2026

Vulnerability Description

The FTP service in Zaurus PDAs SL-5000D and SL-5500 does not require authentication, which allows remote attackers to access the file system as root.

Affected Platforms (CPE)

πŸ“¦
Sharp

Zaurus

= sl-5000d
πŸ“¦
Sharp

Zaurus

= sl-5500

References & Advisories

πŸ”— http://online.securityfocus.com/archive/1/281437
πŸ”— http://www.iss.net/security_center/static/9534.php
πŸ”— http://www.securityfocus.com/archive/1/281549
πŸ”— http://www.securityfocus.com/archive/1/281652
πŸ”— http://www.securityfocus.com/bid/5200
πŸ”— http://online.securityfocus.com/archive/1/281437
πŸ”— http://www.iss.net/security_center/static/9534.php
πŸ”— http://www.securityfocus.com/archive/1/281549

Related Vulnerabilities

CVE-2002-19755.5

Sharp Zaurus PDA SL-5000D and SL-5500 uses a salt of "A0" to encrypt the screen-locking password as stored in the Security.conf fi...

CVE-2002-074710.0

Buffer overflow in lsmcode in AIX 4.3.3.

CVE-2002-135910.0

Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may allow remote attackers to cause ...

CVE-2002-136910.0

jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing...