admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 01:02:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2002/CVE-2002-03xx/CVE-2002-0300.json
cad-safe-bot e6cbafdc40 Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00

129 lines
3.7 KiB
JSON
Raw Blame History

{
"id": "CVE-2002-0300",
"sourceIdentifier": "cve@mitre.org",
"published": "2002-05-31T04:00:00.000",
"lastModified": "2024-11-20T23:38:45.907",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "gnujsp 1.0.0 and 1.0.1 allows remote attackers to list directories, read source code of certain scripts, and bypass access restrictions by directly requesting the target file from the gnujsp servlet, which does not work around a limitation of JServ and does not process the requested file."
},
{
"lang": "es",
"value": "gnujsp 1.0.0 y 1.0.1 permite a atacantes listar directorios, leer el c\u00f3digo fuente de ciertos scripts y sortear restricciones de acceso pidiendo el fichero objetivo directamente al servelet gnujsp, que no resuelve una limitaci\u00f3n de JServ y no procesa el fichero pedido."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"baseScore": 5.0,
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"availabilityImpact": "NONE"
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gnujsp:gnujsp:1.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "9FF92000-DEC0-4F83-AB5F-A69747789D37"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gnujsp:gnujsp:1.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "9ED722FC-4A0A-4407-8659-F1CB2BC063E2"
}
]
}
]
}
],
"references": [
{
"url": "http://marc.info/?l=bugtraq&m=101415804625292&w=2",
"source": "cve@mitre.org"
},
{
"url": "http://marc.info/?l=bugtraq&m=101422432123898&w=2",
"source": "cve@mitre.org"
},
{
"url": "http://www.debian.org/security/2002/dsa-114",
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
]
},
{
"url": "http://www.iss.net/security_center/static/8240.php",
"source": "cve@mitre.org"
},
{
"url": "http://www.securityfocus.com/bid/4125",
"source": "cve@mitre.org"
},
{
"url": "http://marc.info/?l=bugtraq&m=101415804625292&w=2",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://marc.info/?l=bugtraq&m=101422432123898&w=2",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.debian.org/security/2002/dsa-114",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
]
},
{
"url": "http://www.iss.net/security_center/static/8240.php",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.securityfocus.com/bid/4125",
"source": "af854a3a-2127-422b-91ae-364da2661108"
}
]
}
Reference in New Issue View Git Blame Copy Permalink