CyberSec.Space Logo
CVEブラウザに戻る

CVE-2002-2425

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1140%
EPSS Percentile36.95th
Published2002年12月31日
Last Modified2026年4月16日

Vulnerability Description

Sun AnswerBook2 1.2 through 1.4.2 allows remote attackers to execute administrative scripts such as (1) AdminViewError and (2) AdminAddadmin via a direct request.

Affected Platforms (CPE)

📦
Sun

Solaris Answerbook2

= 1.2
📦
Sun

Solaris Answerbook2

= 1.3
📦
Sun

Solaris Answerbook2

= 1.4
📦
Sun

Solaris Answerbook2

= 1.4.1
📦
Sun

Solaris Answerbook2

= 1.4.2

References & Advisories

🔗 http://archives.neohapsis.com/archives/bugtraq/2002-07/0486.html
🔗 http://www.iss.net/security_center/static/9756.php
🔗 http://www.securityfocus.com/bid/5383
🔗 http://archives.neohapsis.com/archives/bugtraq/2002-07/0486.html
🔗 http://www.iss.net/security_center/static/9756.php
🔗 http://www.securityfocus.com/bid/5383

関連する脆弱性情報

CVE-2000-069710.0

The administration interface for the dwhttpd web server in Solaris AnswerBook2 allows interface users to remotely execute commands...

CVE-2000-06967.5

The administration interface for the dwhttpd web server in Solaris AnswerBook2 does not properly authenticate requests to its supp...

CVE-2005-05484.3

Cross-site scripting (XSS) vulnerability in Solaris AnswerBook2 Documentation 1.4.4 and earlier allows remote attackers to inject ...

CVE-2005-05494.3

Cross-site scripting (XSS) vulnerability in Solaris AnswerBook2 Documentation 1.4.4 and earlier allows remote attackers to inject ...