CyberSec.Space Logo
Back to CVE Browser

CVE-2002-2425

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1140%
EPSS Percentile36.95th
PublishedDec 31, 2002
Last ModifiedApr 16, 2026

Vulnerability Description

Sun AnswerBook2 1.2 through 1.4.2 allows remote attackers to execute administrative scripts such as (1) AdminViewError and (2) AdminAddadmin via a direct request.

Affected Platforms (CPE)

πŸ“¦
Sun

Solaris Answerbook2

= 1.2
πŸ“¦
Sun

Solaris Answerbook2

= 1.3
πŸ“¦
Sun

Solaris Answerbook2

= 1.4
πŸ“¦
Sun

Solaris Answerbook2

= 1.4.1
πŸ“¦
Sun

Solaris Answerbook2

= 1.4.2

References & Advisories

πŸ”— http://archives.neohapsis.com/archives/bugtraq/2002-07/0486.html
πŸ”— http://www.iss.net/security_center/static/9756.php
πŸ”— http://www.securityfocus.com/bid/5383
πŸ”— http://archives.neohapsis.com/archives/bugtraq/2002-07/0486.html
πŸ”— http://www.iss.net/security_center/static/9756.php
πŸ”— http://www.securityfocus.com/bid/5383

Related Vulnerabilities

CVE-2000-069710.0

The administration interface for the dwhttpd web server in Solaris AnswerBook2 allows interface users to remotely execute commands...

CVE-2000-06967.5

The administration interface for the dwhttpd web server in Solaris AnswerBook2 does not properly authenticate requests to its supp...

CVE-2005-05484.3

Cross-site scripting (XSS) vulnerability in Solaris AnswerBook2 Documentation 1.4.4 and earlier allows remote attackers to inject ...

CVE-2005-05494.3

Cross-site scripting (XSS) vulnerability in Solaris AnswerBook2 Documentation 1.4.4 and earlier allows remote attackers to inject ...