CyberSec.Space Logo
CVEブラウザに戻る

CVE-2002-1854

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1210%
EPSS Percentile0.12th
Published2002年12月31日
Last Modified2026年4月16日

Vulnerability Description

Rlaj whois CGI script (whois.cgi) 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the domain name field.

Affected Platforms (CPE)

📦
Rlaj

Rlaj Whois

= 1.0

References & Advisories

🔗 http://online.securityfocus.com/archive/1/279268
🔗 http://www.iss.net/security_center/static/9439.php
🔗 http://www.securityfocus.com/bid/5113
🔗 http://online.securityfocus.com/archive/1/279268
🔗 http://www.iss.net/security_center/static/9439.php
🔗 http://www.securityfocus.com/bid/5113

関連する脆弱性情報

CVE-2002-000710.0

CGI.pl in Bugzilla before 2.14.1, when using LDAP, allows remote attackers to obtain an anonymous bind to the LDAP server via a re...

CVE-2002-136910.0

jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing...

CVE-2002-000510.0

Buffer overflow in AOL Instant Messenger (AIM) 4.7.2480, 4.8.2616, and other versions allows remote attackers to execute arbitrary...

CVE-2002-001210.0

Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges v...