Zurück zur CVE-Übersicht
CVE-2002-2065
MEDIUM(5.0)AV:N/AC:L/Au:N/C:P/I:N/A:N
Risk Signal Score13/100 — NIEDRIG
- CVSS 5 — Mittel
EPSS-Score
1%
Exploit-Wahrscheinlichkeit (30 Tage)
CVSS Score
5
Technische Schwere
Beschreibung
WebCalendar 0.9.34 and earlier with 'browsing in includes directory' enabled allows remote attackers to read arbitrary include files with .inc extensions from the web root.
Referenzen
- http://sourceforge.net/project/shownotes.php?group_id=3870&release_id=93295
- http://www.iss.net/security_center/static/9296.php
- http://www.securityfocus.com/bid/4961
- http://sourceforge.net/project/shownotes.php?group_id=3870&release_id=93295
- http://www.iss.net/security_center/static/9296.php
- http://www.securityfocus.com/bid/4961