CyberSec.Space Logo
CVEブラウザに戻る

CVE-2002-1854

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1210%
EPSS Percentile0.12th
Published2002年12月31日
Last Modified2026年4月16日

Vulnerability Description

Rlaj whois CGI script (whois.cgi) 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the domain name field.

Affected Platforms (CPE)

📦
Rlaj

Rlaj Whois

= 1.0

References & Advisories

🔗 http://online.securityfocus.com/archive/1/279268
🔗 http://www.iss.net/security_center/static/9439.php
🔗 http://www.securityfocus.com/bid/5113
🔗 http://online.securityfocus.com/archive/1/279268
🔗 http://www.iss.net/security_center/static/9439.php
🔗 http://www.securityfocus.com/bid/5113

関連する脆弱性情報

CVE-2002-103410.0

none.php for SunPS iRunbook 2.5.2 allows remote attackers to read arbitrary files via an absolute pathname in the argument.

CVE-2002-095110.0

SQL injection vulnerability in Ruslan <Body>Builder allows remote attackers to gain administrative privileges via a "'--" sequence...

CVE-2002-090110.0

Multiple buffer overflows in Advanced Maryland Automatic Network Disk Archiver (AMANDA) 2.3.0.4 allow (1) remote attackers to exec...

CVE-2002-019810.0

Buffer overflow in plDaniels ripMime 1.2.6 and earlier, as used in other programs such as xamime and inflex, allows remote attacke...