CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2002-0613

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1920%
EPSS Percentile32.16th
Published2002年6月18日
Last Modified2026年4月16日

Vulnerability Description

dnstools.php for DNSTools 2.0 beta 4 and earlier allows remote attackers to bypass authentication and gain privileges by setting the user_logged_in or user_dnstools_administrator parameters.

Affected Platforms (CPE)

📦
Dnstools Software

Dnstools

= 2.0_beta3
📦
Dnstools Software

Dnstools

= 2.0_beta4

References & Advisories

🔗 http://archives.neohapsis.com/archives/bugtraq/2002-04/0390.html
🔗 http://www.dnstools.com/dnstools_2.0.1.tar.gz
🔗 http://www.iss.net/security_center/static/8948.php
🔗 http://www.securityfocus.com/bid/4617
🔗 http://archives.neohapsis.com/archives/bugtraq/2002-04/0390.html
🔗 http://www.dnstools.com/dnstools_2.0.1.tar.gz
🔗 http://www.iss.net/security_center/static/8948.php
🔗 http://www.securityfocus.com/bid/4617

相關漏洞威脅

CVE-2000-017710.0

DNSTools CGI applications allow remote attackers to execute arbitrary commands via shell metacharacters.

CVE-2002-000510.0

Buffer overflow in AOL Instant Messenger (AIM) 4.7.2480, 4.8.2616, and other versions allows remote attackers to execute arbitrary...

CVE-2002-000710.0

CGI.pl in Bugzilla before 2.14.1, when using LDAP, allows remote attackers to obtain an anonymous bind to the LDAP server via a re...

CVE-2002-039410.0

Red-M 1050 (Bluetooth Access Point) uses case insensitive passwords, which makes it easier for attackers to conduct a brute force ...